Experts at cyber security firm LMNTRIX have discovered a new ransomware-as-a-service dubbed GandCrab. advertised in Russian hacking community on the dark web. The GandCrab was advertised in Russian hacking community, researchers noticed that authors leverage the RIG and GrandSoft exploit kits to distribute the malware. “Over the last three days LMNTRIX Labs has been tracking an influx of GandCrab ransomware. The […]
Haythem Elmir
Scammers steal nearly $1 million from Bee Token ICO would-be investors
Another day, another ICO-related scam. In an attack similar to that which fooled investors into the Enigma cryptocurrency investment platform, users who were aiming to buy Bee Tokens during a Token Generation Event (i.e., an initial coin offering) were tricked into sending the money to scammers instead. What is the […]
Fake HMRC REF: Notification of payment collection malspam delivers Smoke loader which downloads Trickbot Banking Trojan
This example is an email containing the subject of “REF: Notification of payment collection” pretending to come from HMRC but actually coming from a look-a-like or typo-squatted domain < noreply@notificationsemailgovuk033.top > with a malicious word doc attachment is today’s latest spoof of a well-known company, bank or public authority delivering Trickbot banking Trojan. The initial […]
Mining Botnet Targeting Redis and OrientDB Servers Made Almost $1 Million
A Monero-mining botnet targeting Redis and OrientDB servers has infected nearly 4,400 servers and has mined over $925,000 worth of Monero since March 2017. The botnet —named DDG based on one of its modules— targets Redis servers via a credentials dictionary brute-force attack; and OrientDB databases by exploiting the CVE-2017-11467 […]
(Unpatched) Adobe Flash Player Zero-Day Exploit Spotted in the Wild
One more reason to uninstall Adobe Flash Participant—a brand new zero-day Flash Participant exploit has reportedly been noticed within the wild by North Korean hackers. South Korea’s Laptop Emergency Response Crew (KR-CERT) issued an alert Wednesday for a brand new Flash Participant zero-day vulnerability that is being actively exploited within […]
First Malicious Chrome Extensions Detected Using Session Replay Scripts
Just three months after Princeton researchers were warning users of the dangers of « session replay » attacks, developers of malicious Chrome extensions have incorporated this « trick » into their latest « releases. » The term « session replay » refers to JavaScript code that records user activity and then plays it back in exact detail. Over […]
GandCrab blends old and new threat resources as ransomware evolves
GandCrab blends old and new threat resources as ransomware evolves A ransomware threat called GandCrab emerged during the last week of January, which itself not that newsworthy. However, it’s distribution method and ransom currency choice could be pointers to how 2018 ransomware will evolve. A ransomware threat called GandCrab has […]
Samsung is working on producing cryptocurrency mining chips
Samsung cryptocurrency mining chips called application-specific integrated circuits (ASICs) will soon hit the market and change the way cryptocurrencies are being mined today. Believe it or not but the Korean tech giant Samsung has given in to the cryptocurrency mining craze that companies are currently falling prey to and started developing […]
Facebook a perdu un million d’utilisateurs en Amérique du Nord lors du dernier trimestre 2017
Pour la première fois depuis sa création, Facebook perd des utilisateurs aux USA et au Canada. Avec deux milliards de membres actifs, Facebook aurait-il atteint une sorte de plafond de verre, ou est-ce seulement un effet du social cooling dont nous vous parlions récemment ? Toujours est-il que le réseau […]
We May Soon See Malware Leveraging the Meltdown and Spectre Vulnerabilities
Security researchers are seeing an ever-increasing number of malware samples that are experimenting with the Meltdown and Spectre vulnerabilities. According to experts at AV-TEST, Fortinet, and Minerva Labs, several individuals are experimenting with publicly released proof-of-concept (PoC) code for the Meltdown (CVE-2017-5754) and Spectre (CVE-2017-5715, CVE-2017-5753) vulnerabilities. esearchers from AV-TEST […]