article thumbnail

Avast, Avira, Sophos and other antivirus solutions show problems after

Security Affairs

Antivirus solutions from different vendors are having malfunctions after the installation of Windows security patches released on April 9, including McAfee, Avast and Sophos. Antivirus solutions from different vendors are showing malfunctions after the installation of Windows security patches released on April 9. Pierluigi Paganini.

article thumbnail

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. “Antivirus software trusts signed programs more.

Malware 266
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

Krebs on Security

The flaw is present in most supported versions of Windows Server, from Server 2008 through Server 2019. CVE-2020-1472 earned Microsoft’s most-dire “critical” severity rating, meaning attackers can exploit it with little or no help from users. “Administrators should prioritize patching this flaw as soon as possible.

Antivirus 261
article thumbnail

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or “crypt” your malware so that it appears benign to antivirus and security products. The WHOIS records for autodoska[.]biz

Malware 237
article thumbnail

Top Trending CVEs of February 2023

NopSec

ClamAV, a popular open-source antivirus engine, was found to be prone to a buffer overflow vulnerability that could result in unauthenticated remote command execution (RCE). ClamAV Heap Buffer Overflow CVE-2023-20032 ClamAV is a popular open source antivirus engine used on a variety of platforms.

article thumbnail

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

Out of an abundance of caution, Mark submitted Saicoo’s drivers file to Virustotal.com , which simultaneously scans any shared files with more than five dozen antivirus and security products. Virustotal reported that some 43 different security tools detected the Saicoo drivers as malicious.

Malware 353
article thumbnail

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . ” The Lambert APT (aka Longhorn APT ) has been active since at least 2008, but its first samples were spotted in 2014.

Malware 126