ESET researchers have dissected some of the latest additions to the malicious toolkit of the Advanced Persistent Threat (APT) group known as OceanLotus, also dubbed APT32 and APT-C-00. A prolific purveyor of malware, OceanLotus has its sights set on high-profile corporate and government targets in Southeast Asia, particularly in Vietnam, […]
Haythem Elmir
Report: Three of Top Four Malware Threats Are In-Browser Cryptocurrency Miners
Three in-browser cryptocurrency mining scripts ranked first, second, and fourth in Check Point’s most active malware top ten, outranking classic high-output malware distribution infrastructures such as spam botnets, malvertising, and exploit kit operations. The three are Coinhive (ranked #1), Crypto-Loot (ranked #2), and JSEcoin (ranked #4). These three are online services […]
New security vulnerabilities found in smart devices
Kaspersky Lab security researchers have admitted to finding multiple security vulnerabilities across popular smart devices. According to research from the company the uncovered flaws could allow attackers to obtain remote access to video and audio feeds from the smart cameras, which are used frequently for baby monitors or internal home […]
13 Vulnerabilities in Hanwha SmartCams Demonstrate Risks of Feature Complexity
The researchers at Kaspersky Lab ICS CERT decided to check the popular Hanwha SmartCams and discovered 13 vulnerabilities. Wikipedia describes Attack Surface, as “[the] sum of the different points (the “attack vectors”) where an unauthorized user (the “attacker”) can try to enter data to or extract data from an environment.” Basically, the more […]
China-Linked APT15 used new backdoors in attack against UK Government’s service provider
China-Linked APT15 used new backdoors is an attack that is likely part of a wider operation aimed at contractors at various UK government departments and military organizations. Last week Ahmed Zaki, a senior malware researcher at NCC Group, presented at the Kaspersky’s Security Analyst Summit (SAS), details of a malware-based attack against […]
Kaspersky – Sofacy ‘s campaigns overlap with other APT groups’ operations
According to Kaspersky, the Sofacy APT is particularly interested in military, defense and diplomatic entities in the far east, but overlap with other APT’s operations makes hard the attribution. Last week, during the Kaspersky Security Analyst Summit (SAS) held in Cancun, researchers from Kaspersky illustrated the results of their investigation on the […]
Slingshot : un malware caché pendant près de 5 ans dans des routeurs
Dans la famille des malwares ultra-puissants, le spécialiste de la sécurité informatique Kaspersky vous présente Slingshot. Ce dernier serait passé inaperçu pendant près de 5 ans selon Kaspersky. Mais ne vous inquiétez pas : il est utilisé de manière très ciblée donc il y a très peu de chances que votre […]
New Hacking Team Spyware Samples Detected: ESET
New samples of Hacking Team’s Remote Control System (RCS) flagship spyware have recently emerged, slightly different from previously observed variations, ESET warns. Hacking Team, an Italian spyware vendor founded in 2003, is well known for selling surveillance tools to governments worldwide. In 2015, the firm was hacked, which led to […]
VULNERABILITY IN ROBOTS CAN LEAD TO COSTLY RANSOMWARE ATTACKS
CANCUN, Mexico – A vulnerability in Softbank Robotics’ NAO and Pepper robots can lead to costly ransomware attacks that could cause robots deployed in businesses to stop working, curse at customers, or even perform violent movements. The vulnerability was disclosed at Kaspersky Lab’s Security Analyst Summit by IOActive Labs. The […]
CYBER ESPIONAGE CAMPAIGN ‘SLINGSHOT’ TARGETS VICTIMS VIA ROUTERS
CANCUN, Mexico – Researchers have uncovered a new cyber-espionage threat, dubbed Slingshot, that targets routers and uses them as a springboard to attack computers within a network. Kaspersky Lab, which released details of its discovery during its Security Analyst Summit on Friday, said that the campaign has successfully targeted at […]