article thumbnail

Avast, Avira, Sophos and other antivirus solutions show problems after

Security Affairs

Antivirus solutions from different vendors are having malfunctions after the installation of Windows security patches released on April 9, including McAfee, Avast and Sophos. Antivirus solutions from different vendors are showing malfunctions after the installation of Windows security patches released on April 9. Pierluigi Paganini.

article thumbnail

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

Krebs on Security

The flaw is present in most supported versions of Windows Server, from Server 2008 through Server 2019. CVE-2020-1472 earned Microsoft’s most-dire “critical” severity rating, meaning attackers can exploit it with little or no help from users. “Administrators should prioritize patching this flaw as soon as possible.

Antivirus 275
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. “Antivirus software trusts signed programs more.

Malware 303
article thumbnail

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or “crypt” your malware so that it appears benign to antivirus and security products. The WHOIS records for autodoska[.]biz

Malware 272
article thumbnail

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Krebs on Security

Spanish for “Butterfly,” Mariposa was a potent crime machine first spotted in 2008. In December 2013, a Slovenian court sentenced Škorjanc to four years and ten months in prison for creating the malware that powered the ‘ Mariposa ‘ botnet. An advertisement for the ButterFly Bot. “TM passed this information on to Brian Krebs.”

article thumbnail

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

Out of an abundance of caution, Mark submitted Saicoo’s drivers file to Virustotal.com , which simultaneously scans any shared files with more than five dozen antivirus and security products. Virustotal reported that some 43 different security tools detected the Saicoo drivers as malicious.

Malware 356
article thumbnail

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . ” The Lambert APT (aka Longhorn APT ) has been active since at least 2008, but its first samples were spotted in 2014.

Malware 124