A threat actor apparently interested in inter-Korean affairs continues to launch highly targeted attacks using new pieces of malware and decoy documents referencing North Korean political topics. The cyber espionage group, which experts believe is sponsored by a nation state, has been active for several years, but it managed to […]
World Cyber News
Hacker Returns $26 Million Worth of Ethereum Back to Hacked Company
A hacker has returned over $26,2 million worth of Ethereum to CoinDash, the company it obtained the funds from in July 2017. The money was sent back in two tranches. The hacker sent the first one in September last year when he returned 10,000 ETH ($8.7 million) and a second round last Friday when […]
Avzhan DDoS bot dropped by Chinese drive-by attack
The Avzhan DDoS bot has been known since 2010, but recently we saw it in wild again, being dropped by a Chinese drive-by attack. In this post, we’ll take a deep dive into its functionality and compare the sample we captured with the one described in the past. Analyzed sample 05749f08ebd9762511c6da92481e87d8 – The […]
Data Keeper Ransomware Makes First Victims Two Days After Release on Dark Web RaaS
Two days after crooks started advertising the Data Keeper Ransomware-as-a-Service (RaaS) on the Dark Web, ransomware strains generated on this portal have already been spotted in the wild, infecting the computers of real-world users. Spotted earlier this week by Bleeping Computer, Data Keeper is the third ransomware strain offered as a […]
Banking Nightmare: Chase Glitch Gives Online Access to Random People
Have you ever wondered what would happen if hackers got into your bank account? What if YOUR BANK ITSELF let someone into your account? While hackers may be scary, the scarier prospect is your bank’s online system allowing access to random people. As of this afternoon, that’s actually what happened […]
SamSam Ransomware Hits Colorado DOT, Agency Shuts Down 2,000 Computers
The Colorado Department of Transportation (DOT) has shut down over 2,000 computers after some systems got infected with the SamSam ransomware on Wednesday, February 21. The agency’s IT staff is working with its antivirus provider McAfee to remediate affected workstations and safeguard other endpoints before before reintroducing PCs into its […]
Hack the Air Force: A Ton of Vulnerabilities Found in the US Air Force Cybersecurity System
Cyber world is a risky business. On one side it has made our life easier, and on other it presents risks. Everything on the cloud can be hacked, and no institution is 100% sade, including government organizations. HackerOne, an ethical hacking company and security research firm, hosted an event in […]
OMG: Mirai-based Bot Turns IoT Devices into Proxy Servers
In preparation for our talk entitled “IoT: Battle of Bots” at the RootedCon Security conference that will be held in Madrid, Spain this March 2018, the FortiGuard Labs team encountered yet another new Mirai variant. Since the release of the source code of the Mirai botnet, FortiGuard Labs has seen a number […]
Here We Go Again: Intel Releases Updated Spectre Patches
Here We Go Again: Intel Releases Updated Spectre Patches In a press release published on Tuesday, Intel announced it resumed the deployment of CPU microcode firmware updates. These updates are meant to mitigate the Spectre Variant 2 vulnerability —CVE-2017-5715. The Meltdown (CVE-2017-5754) and Spectre variant 1 (CVE-2017-5753) vulnerabilities —which became […]
The Annabelle Ransomware Is a Horrific Mess
While most ransomware is created to actually generate revenue, some developers create them to show off their « skills ». Such is the case with a new ransomware based off of the horror movie franchise Annabelle. Discovered by security researcher Bart, Annabelle Ransomware includes everything but the kitchen sink when it comes to screwing up […]