Security Affairs

APRIL 22, 2021

Cybersecurity firm Trend Micro revealed that a threat actor is actively exploiting a flaw, tracked as CVE-2020-24557, in its antivirus solutions to gain admin rights on Windows systems. Please refer to the information provided by Trend Micro.” ” reads the advisory published by JPCert.

Antivirus 140

Antivirus Hacking Cybersecurity Information Security 140

Security Affairs

JULY 1, 2019

On June 26, 2019, experts at eSentire Threat Intelligence discovered a C2 infrastructure pointing to a similar Dridex variant that was undetected by most of the antivirus listed in VirusTotal service. At the time of discovery, using data from VirusTotal, only six antivirus solutions of about 60 detected suspicious behavior [ 2 ].

Banking 109

Banking Antivirus Advertising Encryption 109

Security Affairs

MAY 6, 2021

Chinese military unit PLA Unit 61419 is suspected to be involved in cyber-espionage campaigns against multiple antivirus companies. In the summer of 2019, a China-linked APT called Tick Group exploited two zero-days impacting Trend Micro’s Apex One and OfficeScan XG enterprise security products. .

Antivirus 72

Antivirus Software Hacking Malware 72

Security Affairs

SEPTEMBER 28, 2020

Universal Health Services (UHS) is an American Fortune 500 company that provides hospital and healthcare services, in 2019, its annual revenues were $11.37 billion in 2019. “When the attack happened multiple antivirus programs were disabled by the attack and hard drives just lit up with activity.

Ransomware 141

Ransomware Healthcare Advertising Antivirus 141

Security Affairs

NOVEMBER 26, 2019

Kaspersky has fixed several flaws affecting the web protection features implemented in some of its security products. The vulnerabilities were found by the security researcher Wladimir Palant that reported them to Kaspersky in December 2018. “Kaspersky reported these issues to be resolved as of July 2019.

Antivirus 124

Antivirus Advertising Password Management Passwords 124

Security Affairs

JANUARY 31, 2020

Recently another Japanese multinational electronics giant disclosed a data breach, last week Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. According to the company, attackers did not obtain sensitive information about defense contracts.

Data breaches 139

Data breaches Advertising Antivirus Encryption 139

Security Affairs

JUNE 17, 2021

Russian national Oleg Koshkin was convicted for operating a “crypting” service used to obfuscate the Kelihos bot from antivirus software. ”The websites promised to render malicious software fully undetectable by nearly every major provider of antivirus software. . ” reads the press release published by DoJ.”The

Antivirus 121

Antivirus Malware Software Cryptocurrency 121

Security Affairs

APRIL 4, 2020

The virus avoided detection by antivirus solutions through regular updates from an attacker-controlled command-and-control (C2) infrastructure, and spread through the company’s systems, causing network outages and shutting down essential services for nearly a week.”

Antivirus 144

Antivirus Malware Phishing Advertising 144

Security Affairs

NOVEMBER 19, 2019

Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. To bypass antivirus systems, hackers send out malicious emails in non-working hours with delayed activation. More than 80% of all malicious files were disguised as .zip rar archive files.

Ransomware 100

Ransomware Antivirus Malware Banking 100

Security Affairs

AUGUST 26, 2019

” 2019-08-24: #Nemty #Ransomware version '1.0' ' Mutex "hate" | "fuckav" Link to Putin Photo Backup & Shadow Copy Removal | Extension Blacklist | File/Folder Blacklist | 'isRu' check | Stats Git -> [link] pic.twitter.com/fMmAWIfvWv — Vitali Kremez (@VK_Intel) August 24, 2019.

Ransomware 111

Ransomware Malware Antivirus Encryption 111

Security Affairs

AUGUST 3, 2020

The authors of the GandCrab RaaS also offers technical support and updates to its members, they also published a video tutorial that shows how the ransomware is able to avoid antivirus detection. The GandCrab Ransomware-as-a-Service shut down operations in June 2019 and told affiliates to stop distributing the ransomware.

Ransomware 145

Ransomware Advertising Malware Hacking 145

Security Affairs

MARCH 26, 2022

. – to its list of communications equipment and services that have been deemed a threat to national security, consistent with requirements in the Secure and Trusted Communications Networks Act of 2019.” ” reads the FCC’s press release.

Risk 125

Risk Telecommunications Mobile Antivirus 125

Security Affairs

DECEMBER 12, 2021

“A Russian national was sentenced today to 48 months in prison for operating a “crypting” service used to conceal the Kelihos malware from antivirus software, which enabled hackers to systematically infect approximately hundreds of thousands of victim computers around the world with malicious software, including ransomware.”

Antivirus 108

Antivirus Malware Cybercrime Cyber threats 108

Security Affairs

APRIL 7, 2021

“The lack of timely antivirus database updates for the security solution used on attacked systems also played a key role, preventing the solution from detecting and blocking the threat. It should also be noted that some components of the antivirus solution were disabled, further reducing the quality of protection.

VPN 137

VPN Ransomware Antivirus Firmware 137

Security Affairs

OCTOBER 23, 2019

Flaws in Avast, AVG, and Avira Antivirus could be exploited by an attacker to load a malicious DLL file to bypass defenses and escalate privileges. The Antivirus implements a self-defense mechanism that prevents malicious code to write and implant a DLL to its folders. ” continues the experts.

Antivirus 75

Antivirus Advertising Security Defenses Hacking 75

Security Affairs

JULY 25, 2019

Researchers at Intezer have discovered a new variant of WatchBog, a Linux-based cryptocurrency mining botnet, that also includes a module to scan the Internet for Windows RDP servers vulnerable to the Bluekeep vulnerability (CVE-2019-0708). ” reads a blog post published by Intezer. ” continues the analysis.

Cryptocurrency 106

Cryptocurrency Internet Internet Malware 106

Security Affairs

MARCH 17, 2021

According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware. New #Mespinoza #Ransomware [link] Ext: locked R/n: Readme.README Affected users, contact the support forum of @BleepinComputer pic.twitter.com/SbKxVEIXUd — Amigo-A (@Amigo_A_) October 25, 2019.

Education 131

Education Ransomware Encryption Antivirus 131

Security Affairs

JANUARY 6, 2023

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware , which can allow victims of the group to restore their data for free. The group typically asked ransoms between $20,000 to $5.8

Ransomware 98

Ransomware Antivirus Encryption Backups 98

Security Affairs

JULY 8, 2020

The name Fxmsp refers a high-profile Russian- and English-speaking hacking group focused on breaching high-profile private corporate and government information. Since March 2019, Fxmsp announced in cybercrime forums the availability of information stolen from major antivirus companies located in the U.S.

Hacking 121

Hacking Antivirus Advertising Cybercrime 121

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Disable hyperlinks in received emails.

Government 111

Government Passwords Firmware Accountability 111

Security Affairs

JUNE 23, 2021

One of the fathers of antivirus software, the entrepreneur John McAfee has been found dead in a Barcelona prison cell while he was waiting for extradition to the US. The DoJ announced the charges after the US Securities and Exchange Commission (SEC) also charged McAfee with fraudulently touting ICOs.

Cryptocurrency 145

Cryptocurrency Banking Accountability Antivirus 145

Security Affairs

FEBRUARY 24, 2020

Since end-December 2019 lampion malware has been noted as the most prominent malware targeting Portuguese organizations. As observed below, the size of the junk lines presented in these samples is major related to the initial file observed in mid-December 2019. The reason behind that is simple: to evade antivirus detection.

Malware 126

Malware Banking Antivirus Advertising 126

Security Affairs

NOVEMBER 14, 2019

Symantec addressed a local privilege escalation flaw, tracked as CVE-2019-12758 , that affects all Symantec Endpoint Protection client versions prior to 14.2 The flaws could allow attackers to bypass the self-defense mechanism of the antivirus solutions and deliver persisten t malicious payloads. RU2 on October 22, 2019.

Antivirus 104

Antivirus Advertising Hacking Information Security 104

Security Affairs

MARCH 19, 2020

” According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware. Operators behind the Pysa ransomware, also employed a version of the PowerShell Empire penetration-testing tool, they were able to stop antivirus products. This new version used the.

Government 144

Government Ransomware Encryption Penetration Testing 144

Security Affairs

JANUARY 26, 2020

Citrix releases permanent fixes for CVE-2019-19781 flaw in ADC 11.1 Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack. Bot list with Telnet credentials for more than 500,000 servers and IoT devices leaked online. Hackers patch Citrix servers to deploy their own backdoor. Govn Agency.

Data breaches 118

Data breaches Advertising Antivirus DDOS 118

Security Affairs

JANUARY 6, 2023

“The attack is similar to the one in the summer of 2019, when four other hospitals in Romania were targeted. “We have already notified the National Directorate of Cyber Security and DIICOT. In 2019 other four hospitals in Romania suffered ransomware attacks that were attributed to the PHOBOS extortion group.

Ransomware 98

Ransomware Antivirus Media Encryption 98

Security Affairs

JUNE 12, 2019

The recently released Microsoft Patch Tuesday security updates for June 2019 failed to address a flaw in SymCrypt , a core cryptographic function library currently used by Windows. Ormandy privately reported the flaw to Microsoft in March 2019, but the tech giant failed into fixing it after 90 days.

Encryption 107

Encryption Advertising Antivirus Hacking 107

CyberSecurity Insiders

JANUARY 6, 2023

billion in 2019 to $815.4 Test security of systems and networks regularly. Support information security within organizational policies and programs. Requirement 5: It is no longer sufficient to just have standard antivirus software. In fact, the U.S. billion in 2020, a 43% increase. Changes in PCI DSS 4.0.

Antivirus 138

Antivirus Retail Software Accountability 138

Security Affairs

MAY 21, 2019

Sophos confirmed that the latest set of Windows updates are causing problems with the boot of computers running the popular Antivirus software. Experts believe the problems could be caused by the incompatibility with the KB4499164 and KB4499175 Microsoft Patches released on May 14, 2019. ” continues the note.

Advertising 105

Advertising Antivirus Malware Cyber Attacks 105

Security Affairs

JULY 9, 2019

See how #MicrosoftDefenderATP next-gen protection defeated the #fileless attack: [link] — Microsoft Security Intelligence (@MsftSecIntel) July 8, 2019. The malware is able to log the users’ keystrokes, collect information through hooking, access clipboard content, and monitor the keystate.

Antivirus 108

Antivirus Malware Advertising Security Intelligence 108

Security Affairs

MARCH 21, 2019

The first public mention related to Altran cyber attack was seen in a tweet on January 25th, which received a reply from a computer security researcher who hinted that a malware sample that was uploaded to VirusTotal was behind the attack.ù. In addition, the ransomware has also not been detected by Microsoft Windows Defender. Let’s look.

Ransomware 111

Ransomware Encryption Malware Antivirus 111

Security Affairs

SEPTEMBER 7, 2020

.” The library can generate files in multiple spreadsheet formats, it also supports Excel 2019. Some antivirus solutions specifically analyze this section look for malicious VBA code in the Excel docs.

Cybercrime 140

Cybercrime Phishing Advertising Antivirus 140

Security Affairs

AUGUST 18, 2019

Adobe Patch Tuesday for August 2019 fixed 119 flaws in 8 products. Microsoft Patch Tuesday for August 2019 patch 93 bugs, including 2 dangerous wormable issues. Security Patch Day for August includes the most critical Note released by SAP in 2019. A flaw in Kaspersky Antivirus allowed tracking its users online.

Banking 90

Banking Password Management Advertising Antivirus 90

Security Affairs

JUNE 23, 2020

Fxmsp gained worldwide fame in May 2019, after it was reported that the networks belonging to leading antivirus software companies had been compromised. In mid-March 2019, the co-conspirators resumed their activity on forums. Fxmsp’s public activity culminated in April 2019. Geography and victims. The big fish.

Antivirus 108

Antivirus Advertising Hacking Banking 108

Security Affairs

JUNE 20, 2022

The malware was first spotted in 2019 by security experts at Kaspersky, the name BRAT comes from ‘Brazilian RAT Android,’ because at the time it was used to spy on Brazilian users. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Malware 138

Malware Banking Antivirus Phishing 138

Security Affairs

DECEMBER 29, 2019

The samples of BIOLOAD loader analyzed by the experts were compiled in March and July 2019, while the samples of BOOSTWRITE were compiled in May. Experts pointed out that the BIOLOAD’s WinBio.dll is still detected by a limited number of antivirus on VirusTotal scanning platform despite it was compiled nine months ago.

Cybercrime 93

Cybercrime Antivirus Identity Theft Advertising 93

Security Affairs

JULY 16, 2020

The source code of the Xerxes malware was leaked online around May 2019. ” The malicious code supports multiple commands, it could launch overlay attacks, log keystrokes, send spam the victims’ contact lists with SMS messages, and prevent victims from using antivirus software.

Malware 136

Malware Banking Mobile Advertising 136