ON WEDNESDAY, AT about 12:15 pm ET, 1.35 terabits per second of traffic hit the developer platform GitHub all at once. It was the most powerful distributed denial of service attack recorded to date—and it used an increasingly popular DDoS method, no botnet required. GitHub briefly struggled with intermittent outages as […]
Researchers Find 34,200 Vulnerable Ethereum Smart Contracts
A scan of nearly one million Ethereum smart contracts has identified 34,200 vulnerable contracts that can be exploited to steal Ether, and even freeze or delete assets in contracts the attackers don’t own. For the average user not familiar with the world of cryptocurrencies, smart contracts are a set of coded operations […]
SgxSpectre Attack Can Extract Data from Intel SGX Enclaves
A new variation of the Spectre attack has been revealed this week by six scientists from the Ohio State University. Named SgxSpectre, researchers say this attack can extract information from Intel SGX enclaves. Intel Software Guard eXtensions (SGX) is a feature of modern Intel processors that allow an application to […]
Banking Trojan Found in Over 40 Models of Low-Cost Android Smartphones
Over 40 models of low-cost Android smartphones are sold already infected with the Triada banking trojan, says Dr.Web, a Russia-based antivirus vendor. The security vendor published today a list of 42 Android models its researchers analyzed and found to be infected with the Android.Triada.231 trojan. Triada is a very powerful […]
Virus Knocks Out Cash Registers at Tim Hortons Franchisees
A computer virus is suspected of crashing cash registers this week at over 1,000 Tim Hortons coffee and donuts fast food restaurants. The problem is not yet fully resolved, and some stores are still experiencing problems. The problems appeared earlier this week when XP-based cash registers began crashing. Outages initially affected at […]
CannibalRAT, a RAT entirely written in Python observed in targeted attacks
The CannibalRAT RAT is being used in highly targeted attacks. the experts explained that even if it isn’t very sophisticated it exhibits signs of code cannibalisation from other open-source projects. “The RAT itself is not very sophisticated, and exhibits signs of code cannibalisation from other open-source projects, which contrasts with the command-and-control, using fast flux to […]
New Malware Used in Attacks Aimed at Inter-Korean Affairs
A threat actor apparently interested in inter-Korean affairs continues to launch highly targeted attacks using new pieces of malware and decoy documents referencing North Korean political topics. The cyber espionage group, which experts believe is sponsored by a nation state, has been active for several years, but it managed to […]
Microsoft Partners with Intel to Deliver CPU Microcode Fixes via Windows Updates
Microsoft said today that it would take Intel CPU microcode updates meant to fix the Spectre v2 vulnerability and ship these updates to users via a Windows update package. The announcement is a change of direction in regards to Microsoft’s position towards the Meltdown and Spectre patching process. The complicated […]
Github hit by 1.35 Tbps DDoS attack; the largest ever
The online version control and code distribution platform Github has suffered a series of massive distributed denial of service (DDoS) attacks on Wednesday, February 28, 2018, causing service disruption by forcing its website Github.com to go offline. In the first phase of the attack, Github’s website suffered a shocking 1.35 terabits per second (Tbps) spike while […]
CSE Malware ZLab – Malware Analysis Report: A new variant of Mobef Ransomware
Malware researchers at CSE Cybsec – ZLab have analyzed a new variant of Mobef ransomware, a malware that in the past mainly targeted Italian users. Malware researchers at CSE Cybsec – ZLab have analyzed a new variant of Mobef ransomware, that was involved in past attacks against Italian users. I […]