The Necurs botnet has changed again today and appears to be delivering yet another ransomware version. I think today’s malware is some sort of ransomware but I am not 100% sure. I am seeing mixed results whether it is ransomware or Trickbot, so it could well be “one of them files” that […]
Haythem Elmir
Fake New BT Online Bill malspam delivers Dridex banking trojan
Continuing with the never ending series of malware downloaders is an email with the subject of New BT Online Bill pretending to come from BT but actually coming from a look-a-like or typo-squatted domain BT Business <noreply@bt.connectionsc.com> delivers Dridex Banking Trojan. BT has not been hacked or had their email or other servers […]
Password Stealing Apps With Over A Million Downloads Found On Google Play Store
Even after so many efforts by Google like launching bug bounty program and preventing apps from using Android accessibility services, malicious applications somehow manage to get into Play Store and infect people with malicious software. The same happened once again when security researchers discovered at least 85 applications in Google […]
Bitfinex cryptocurrency exchange hit by massive DDoS attacks
Bitfinex, known as one of the world largest cryptocurrency exchange was forced to shut down its ongoing operations after suffering a series of non-stop distributed denial of service (DDoS) attacks on Tuesday, December 12th. Based in Hong Kong, Bitfinex used its Twitter account to inform its customers about the situation and stated that […]
Malicious advertising menace in social media!
A surging motivated political confabulation and speculations in the social networking sites simply suggest a trend of unabetted malicious advertisement these days. These are, beyond doubt, paid political advertisements which gather momentum in the most visited social networking sites on the planet. Take the example of Facebook where scores of […]
Signature d’une Convention entre le MTCEN et la Société « Level4 » dans le Domaine de l’Installation et l’Exploitation d’un Réseau Public de Télécommunications en Tunisie pour Fournir des services de Gros Très Haut Débit
Une convention a été signée aujourd’hui Lundi le 11 décembre 2017 entre le Ministère des Technologies de Communication et de l’Economie Numérique d’une part, et la Société « Level 4 » crée récemment dans le cadre d’un partenariat entre les secteurs public et privé tunisiens et étrangers dans le domaine […]
New Android vulnerability allows attackers to modify apps without affecting their signatures
A serious vulnerability (CVE-2017-13156) in Android allows attackers to modify the code in applications without affecting their signatures. The root of the problem is that a file can be a valid APK file and a valid DEX file at the same time. We have named it the Janus vulnerability, after […]
Newly Uncovered ‘MoneyTaker’ Hacker Group Stole Millions from U.S. & Russian Banks
Security researchers have uncovered a previously undetected group of Russian-speaking hackers that has silently been targeting Banks, financial institutions, and legal firms, primarily in the United States, UK, and Russia. Moscow-based security firm Group-IB published a 36-page report on Monday, providing details about the newly-disclosed hacking group, dubbed MoneyTaker, which […]
Vietnamese man hacked Australian airport computers; stole security data
A 31-year-old Vietnamese hacker, Le Duc Hoang Hai, stole highly sensitive data belonging to Perth Airport’s building and security infrastructure after breaching its computer systems. The incident took place in March 2016, when Hai got his hand on login credentials of a third-party contractor allowing him to access the airport systems. What […]
Microsoft Has Fixed A Critical Vulnerability In Malware Protection Engine
On Wednesday, Microsoft has released a patch for the Microsoft Malware Protection Engine (MPE) to fix a critical severity remote code execution (RCE) flaw in it. The vulnerability (tracked as CVE-2017-11937) has been discovered by UK’s National Cyber Security Centre (NCSC) that could lead to memory corruption and enable an […]