A week in security (October 16 – October 22)

A compilation of notable security news and blog posts from Monday, October 16 to Sunday, October 22. We talked about adware and malware in Google Play, a ransomware exclusively targeting South Korea, BYOD, a new 419 scam, cyptocurrency mining, and more. Categories: Security world Week in security Tags: 419 scambyodcoinhiveculture of securitydynamic data exchangefake elmedia playerKRACKmagniberransomwarerecapweekly blog roundup (Read more...) The post A week in security (October 16 – October 22) appeared first on Malwarebytes Labs.
Read more

How to Block Ransomware Using Controlled Folder Access on Your PC

Microsoft has released a new feature called “Controlled Folder Access” that helps Windows users protect their data against ransomware. First announced in June 2017, Controlled Folder Access is an option in Windows Defender Security Center that went live in mid-October. Its purpose is to protect files contained in designated folders against unauthorized changes. Users can … Read More The post How to Block Ransomware Using Controlled Folder Access on Your PC appeared first on The State of Security.
Read more

More trouble in Google Play land

After our mobile security experts repeatedly discovered adware on several apps on the Google Play store, our friends at Symantec have unearthed at least eight malicious apps that are found capable of adding affected mobile devices to a botnet. Categories: Cybercrime Mobile Tags: Android/Backdoor.Clientor.funBotbotnetGoogle PlayMobilesockbot (Read more...) The post More trouble in Google Play land appeared first on Malwarebytes Labs.
Read more

Fraud and Cryptocurrency Attacks on the Rise Heading into the End of 2017

The financials sector saw an increase in incident volume in the third quarter of 2017, and much of that increase revolved around cyber-attacks targeting various cryptocurrency platforms, as well as payment card breaches in the consumer goods sector that led to increased fraud activity on cybercriminal markets. Key takeaways from SurfWatch Labs’ threat intelligence findings… Read More
Read more

Magniber Ransomware Wants to Infect Only the Right People

Introduction Exploit kit (EK) use has been on the decline since late 2016; however, certain activity remains consistent. The Magnitude Exploit Kit is one such example that continues to affect users, particularly in the APAC region. In Figure 1, which is based on FireEye Dynamic threat Intelligence (DTI) reports shared in March 2017, we can see the regions affected by Magnitude EK activity during the last three months of 2016 and the first three months of 2017. Figure 1: Magnitude EK distribution as seen in March 2017 This trend continued until late September 2017, when we saw Magnitude EK focus primarily on the APAC region, with a large chunk targeting South Korea. Magnitude EK activity then fell off the radar until Oct. 15, 2017, when it came back and began focusing solely on South Korea. Previously it had been distributing Cerber ransomware, but Cerber distribution has declined (we have also seen a decline of Cerber being distributed via email) and now it is distributing ransomware known as Magniber.  Infection The first reappearance of Magnitude EK on Oct. 15 came as a ...
Read more

The Dyn Attack – One Year Later

One year ago, a threat actor launched a DDoS attack that disrupted service of some of the internet’s biggest names. The Mirai botnet had enslaved hundreds of thousands of IoT devices and was used to attack several entities, including the managed Domain Name System (DNS) provider Dyn. The attack on Dyn was an event that The post The Dyn Attack – One Year Later appeared first on Radware Blog.
Read more
Page 1 of 3712345...102030...Last »