The extraordinary volatility of the price of bitcoin has spurred speculators to employ a wide variety of tricks to make it swing between extremes, so that they can take advantage of it. The unregulated nature of the cryptocurrency ecosystem makes it possible for things like statements by widely esteemed […]
Andromeda botnet taken down, Belarusian involved arrested
A joint operation involving Germany, the United States and Belarus has taken down a malware system known as “Andromeda” or “Gamarue” that infected more than 2 million computers globally, Europol said on Tuesday. Andromeda is best described as a « botnet », or group of computers that have been infected with a […]
Critical Flaw in Major Android Tools Targets Developers and Reverse Engineers
Finally, here we have a vulnerability that targets Android developers and reverse engineers, instead of app users. Security researchers have discovered an easily-exploitable vulnerability in Android application developer tools, both downloadable and cloud-based, that could allow attackers to steal files and execute malicious code on vulnerable systems remotely. The issue […]
StorageCrypt Ransomware Infecting NAS Devices Using SambaCry
Recently BleepingComputer has received a flurry of support requests for a new ransomware being named StorageCrypt that is targeting NAS devices such as the Western Digital My Cloud. Victims have been reporting that their files have been encrypted and a note left with a ransom demand of between .4 and 2 bitcoins to […]
New TeamViewer Hack Could Allow Clients to Hijack Viewers’ Computer
Do you have remote support software TeamViewer installed on your desktop? If yes, then you should pay attention to a critical vulnerability discovered in the software that could allow users sharing a desktop session to gain complete control of the other’s PC without permission. TeamViewer is a popular remote-support software […]
Vulnérabilité d’usurpation d’identité dans plusieurs clients de messagerie
GESTION DU DOCUMENT Référence CERTFR-2017-ALE-019 Titre Vulnérabilité d’usurpation d’identité dans plusieurs clients de messagerie Date de la première version 05 décembre 2017 Date de la dernière version 05 décembre 2017 Source(s) Site Mailsploit décrivant le principe de la vulnérabilité Pièce(s) jointe(s) Aucune(s) Tableau 1: Gestion du document Une gestion de version […]
FAME : An Open-Source Malware Analysis Framework
FAME is a recursive acronym meaning “FAME Automates Malware Evaluation”. It is meant to facilitate analysis of malicious files, leveraging as much knowledge as possible in order to speed up and automate end-to-end analysis. Best case scenario: the analyst drops a sample, waits for a few minutes, and FAME is […]
Massive Breach Exposes Keyboard App that Collects Personal Data On Its 31 Million Users
In the digital age, one of the most popular sayings is—if you’re not paying, then you’re not the customer, you’re the product. While downloading apps on their smartphones, most users may not realize how much data they collect on you. Believe me; it’s way more than you can imagine. Nowadays, […]
A giant botnet behind one million malware attacks a month just got shut down
Arrest made over Andromeda botnet following operation involving the FBI, Europol and other authorities working with cyber security companies. A major botnet operation incorporating millions of PCs and associated with over 80 different malware families has been taken down in an international cyber operation. Authorities including the FBI, Europol’s European […]
Le secteur financier tunisien teste sa réactivité face aux cyber-attaques via des exercices de simulation
Financial CERT réalise son premier cyber-exercice. Mardi le 28 Novembre 2017, Le Financial CERT de l’APTBEF qui est entité de coordination au sein du secteur financier tunisien pour la lutte contre les cyber-attaques a organisé un événement en collaboration avec l’agence nationale de la sécurité informatique qui s’est déroulé au […]