Schneier on Security

DECEMBER 30, 2020

Good article on the evolution of ransomware : Though some researchers say that the scale and severity of ransomware attacks crossed a bright line in 2020, others describe this year as simply the next step in a gradual and, unfortunately, predictable devolution. After years spent honing their techniques, attackers are growing bolder.

Ransomware 285

Ransomware Antivirus 285

Krebs on Security

SEPTEMBER 24, 2020

DHS’s Cybersecurity and Infrastructure Agency (CISA) said in the directive that it expected imminent exploitation of the flaw — CVE-2020-1472 and dubbed “ZeroLogon” — because exploit code which can be used to take advantage of it was circulating online.

Antivirus 275

Antivirus Security Intelligence Engineering Authentication 275

Security Affairs

JANUARY 25, 2020

Chinese hackers have exploited a zero-day vulnerability the Trend Micro OfficeScan antivirus in the recently disclosed hack of Mitsubishi Electric. Now ZDNet has learned from sources close to the investigation that the Chinese hackers have used a zero-day flaw in the Trend Micro OfficeScan antivirus in the attack on Mitsubishi Electric.

Antivirus 145

Antivirus Hacking Advertising Media 145

SecureList

FEBRUARY 15, 2021

In 2020: The share of spam in email traffic amounted to 50.37%, down by 6.14 The email antivirus was triggered most frequently by email messages containing members of the Trojan.Win32.Agentb The share of spam in global email traffic in 2020 was down by 6.14 Proportion of spam in global email traffic, 2020 ( download ).

Phishing 145

Phishing Malware Accountability Scams 145

Security Affairs

MARCH 15, 2022

According to §7 BSI law, the BSI warns against the use of Kaspersky Antivirus and recommends replacing it asap with defense solutions from other vendors. The alert pointed out that antivirus software operates with high privileges on machines and if compromised could allow an attacker to take over them. Pierluigi Paganini.

Antivirus 114

Antivirus Software Manufacturing Information Security 114

CSO Magazine

JUNE 24, 2021

antivirus pioneer John McAfee was found dead in a Spanish prison cell on Wednesday June 25, 2021. The British-born, outspoken millionaire was being held in Barcelona after being arrested in October 2020 on charges of US tax evasion. According to Spanish authorities, the cause of the 75-year-old’s death was suicide.

Antivirus 113

Antivirus CSO Cybersecurity Cryptocurrency 113

eSecurity Planet

OCTOBER 27, 2021

What’s the best antivirus software? With the rise in malware and ransomware and a growing reliance on the internet, antivirus solutions are critical for protecting your data and applications. Top 4 antivirus software. ESET is another consumer antivirus vendor boasting strong enterprise security test scores.

Antivirus 98

Antivirus Software Malware Marketing 98

Security Affairs

FEBRUARY 24, 2020

We have tracking Lampion activity from the beginning, and we noticed that since February 12th – 2020, the malware has been presented with a new “visual” but maintaining the same modus operandi. 2020-02-13] #Lampion v2 #portugal #malware #ATA 0998f6473004e0ba54ead5784ba62db8 h}//vrau-x.s3.us-east-2.amazonaws.[com/0.zip com/P-14-7.dll

Malware 118

Malware Banking Antivirus Advertising 118

Krebs on Security

JANUARY 27, 2021

“It picked up steam in mid-2020, growing the average ransom to $65,000 last year, up from $18,800 in 2019.” The NetWalker ransomware affiliate program kicked off in March 2020, when the administrator of the crimeware project began recruiting people on the dark web. ” Image: Chainalysis. Powershell build.

Ransomware 333

Ransomware Cybercrime Antivirus Encryption 333

SecureList

FEBRUARY 26, 2021

The state of stalkerware in 2020 (PDF). Kaspersky’s data shows that the scale of the stalkerware issue has not improved much in 2020 compared to the last year: The number of people affected is still high. In total, 53,870 of our mobile users were affected globally by stalkerware in 2020. between 2015 and 2020.

Mobile 127

Mobile Surveillance Software Passwords 127

Adam Levin

DECEMBER 16, 2020

If 2020 taught us anything, it’s to expect the unexpected–and do the best we can in a rapidly changing world. Keep your antivirus up to date: Any decent antivirus program needs to be updated regularly to keep ahead of new viruses and malware. That’s always the case when it comes to cybersecurity.

VPN 245

VPN Antivirus Passwords Backups 245

Krebs on Security

APRIL 18, 2022

Conti ravaged the healthcare sector throughout 2020, and leaked internal chats from the Conti ransomware group show the gang had access to more than 400 healthcare facilities in the U.S. alone by October 2020. In June 2021, the HSE’s director general said the recovery costs for that attack were likely to exceed USD $600 million.

Healthcare 338

Healthcare Ransomware Cybersecurity Malware 338

Adam Levin

JANUARY 30, 2020

Avast will phase out Jumpshot, a subsidiary that sells user browsing data gleaned from its antivirus and security products. . “I No reasonable person would expect antivirus software to be selling off their private browsing data to the highest bidder,” said a spokesperson for Sanders. . On every site.”

Data collection 165

Data collection Antivirus Software 165

Krebs on Security

DECEMBER 13, 2021

31, 2021, the HSE’s antivirus software detected the execution of two software tools commonly used by ransomware groups — Cobalt Strike and Mimikatz — on the Patient Zero Workstation. But the antivirus software was set to monitor mode, so it did not block the malicious commands.”

Healthcare 325

Healthcare Ransomware Antivirus Hacking 325

Security Affairs

MARCH 11, 2020

Antivirus maker Avast has disabled a core component of its antivirus to address a severe vulnerability that would have allowed attackers to control users’ PC. link] — Tavis Ormandy (@taviso) March 11, 2020. Ormandy pointed out that the main Avast antivirus process, AvastSvc.exe, which, runs as SYSTEM.

Engineering 144

Engineering Antivirus Advertising Hacking 144

Security Affairs

DECEMBER 17, 2024

The threat actors attempted to exploit multiple vulnerabilities in DVRs, including CVE-2017-7921, CVE-2018-9995 , CVE-2020-25078, CVE-2021-33044 , and CVE-2021-36260. In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom.

Architecture 107

Architecture Internet Internet Malware 107

eSecurity Planet

NOVEMBER 11, 2020

What is the best antivirus software? We use our own methodology to give you the answer, plus some tips on how to stay safe online.

Antivirus 55

Antivirus Software 55

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Threat Report Portugal: Q3 2020 compiles data collected on the malicious campaigns that occurred from July to August, Q3, of 2020. Phishing and Malware Q3 2020. Malware by Numbers.

Threat Reports 90

Threat Reports Phishing Malware Banking 90

Krebs on Security

JANUARY 6, 2022

Norton 360 , one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. However, many users have reported difficulty removing the mining program. “The older generation simply doesn’t trust the new-fangled ideas of the Bitcoin youth.” ”

Cryptocurrency 351

Cryptocurrency Computers and Electronics Antivirus Identity Theft 351

Security Affairs

APRIL 22, 2021

Cybersecurity firm Trend Micro revealed that a threat actor is actively exploiting a flaw, tracked as CVE-2020-24557, in its antivirus solutions to gain admin rights on Windows systems. The CVE-2020-24557 vulnerability affects the Apex One and OfficeScan XG enterprise security products.

Antivirus 134

Antivirus Hacking Cybersecurity Information Security 134

Security Affairs

MARCH 26, 2025

ReaderUpdate is a macOS malware loader that has been active since 2020, the malicious code was first seen as a compiled Python binary and was spotted delivering Genieo adware. While only one sample is currently detected by antivirus tools, many others remain undetected.

Malware 70

Malware Adware Antivirus Marketing 70

Security Affairs

JUNE 27, 2021

“While the Windows system is in safe mode antivirus software doesn’t work. The researchers started investigating the threat after they became aware that the malware was disabling and uninstalling its antivirus from infected devices. “It also uses WQL to query all antivirus software installed SELECT * FROM AntiVirusProduct.”

Antivirus 143

Antivirus Cryptocurrency Malware Software 143

Security Affairs

FEBRUARY 22, 2024

US FTC charged cyber security firm Avast with harvesting consumer web browsing data through its browser extension and antivirus and sold it. The antivirus firm is accused of selling the data to advertising companies without user consent. ” re ads the FTC’s complaint. FTC will also fine Avast $16.5

Advertising 136

Advertising Antivirus Data collection Software 136

Krebs on Security

MARCH 28, 2021

Oddly, none of the several dozen antivirus tools available to scan the file at Virustotal.com currently detect it as malicious. I first heard about the domain in December 2020, when a reader told me how his entire network had been hijacked by a cryptocurrency mining botnet that called home to it.

Hacking 363

Hacking Cybercrime DNS Internet 363

Security Boulevard

FEBRUARY 18, 2021

We're proud to announce that Avast Free Antivirus has been awarded “Top-Rated Product” status for 2020 by AV-Comparatives. The post AV-Comparatives Top Rated Product Of 2020 | Avast appeared first on Security Boulevard. Avast was recognized ahead of many paid-for alternatives.

Antivirus 59

Antivirus 59

Security Affairs

JANUARY 4, 2021

pic.twitter.com/Qlska7DteM — Arkbird (@Arkbird_SOLG) December 27, 2020. The EICAR Anti-Virus Test File, or EICAR test file, is a computer file that was developed by the European Institute for Computer Antivirus Research (EICAR) and Computer Antivirus Research Organization (CARO), to test the response of computer antivirus (AV) programs.

Antivirus 129

Antivirus Malware Accountability Hacking 129

Security Affairs

JULY 22, 2021

Cybersecurity and Infrastructure Security Agency (CISA) published a security alert related to the discovery of 13 malware samples on compromised Pulse Secure devices, many of which were undetected by antivirus products. Experts pointed out that only one of malware samples analyzed by CISA was uploaded on VirusTotal with a low detection rate.

Malware 139

Malware Antivirus Passwords Firewall 139

Security Affairs

JUNE 22, 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. Experts pointed out that the number of infected systems could be far greater because data provided by AVAST are only related to systems running their antivirus solution.

DNS 145

DNS Internet Internet Malware 145

Krebs on Security

JUNE 1, 2023

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. “Antivirus software trusts signed programs more.

Malware 301

Malware Cybercrime Software Accountability 301

Security Affairs

MARCH 18, 2020

The first issue, tracked as CVE-2020-8467 , impacts the migration tool component of Apex One and OfficeScan. The second vulnerability exploited in the wild, tracked as CVE-2020-8468 is a content validation escape issue that affects the agents for Worry-Free Business Security, Apex One and OfficeScan. ” reads the advisory.

Authentication 137

Authentication Advertising Antivirus Cybercrime 137

Security Boulevard

JULY 22, 2021

Following up on our big win at the end of 2020 , we’re now excited to announce that Avast Business Antivirus Pro Plus has received the “Approved Business Product” award for July 2021 by AV-Comparatives. The post Avast Receives AV-Comparatives Approved Business Product Award | Avast appeared first on Security Boulevard.

Antivirus 98

Antivirus 98

Krebs on Security

MARCH 2, 2022

Lawrence Abrams at Bleeping Computer pointed to an October 2020 Conti chat in which the Emotet representative “Buza” posts a link to a security firm’s analysis of Ryuk’s return. “However, based on chats, some affiliates didn’t know that Ryuk and Conti were run by the same people.” ” ATTRITION.

Ransomware 237

Ransomware Antivirus Malware Cybercrime 237

SecureList

JULY 1, 2021

In 2020, the number of gamers worldwide surpassed 2.7 They dropped off slightly after reaching the all-time peak in May 2020 mentioned in our last year’s report. The number of web attacks exploiting gaming themes from January 2020 to May 2021. They played, they play, and they’ll keep playing.

Antivirus 144

Antivirus Malware Accountability Mobile 144

Malwarebytes

APRIL 14, 2022

This decrease in stalkerware-type activity never reached the lower levels in 2019 that Malwarebytes recorded before the start of the global coronavirus pandemic, which was recognized in 2020 and which spread quickly across the globe beginning in the months of February, March, and April. This represents a 4.2 What’s at play here?

Spyware 143

Spyware Antivirus Technology Government 143

SC Magazine

JUNE 18, 2021

The Blackbaud data breach was the largest health care-related incident of 2020, impacting an estimated two dozen providers and well over 10 million patients. In February 2020, threat actors hacked into its self-hosted environment, stealing data as they proliferated across the network. Photo captured from Alina Lodge website ).

Data breaches 80

Data breaches Ransomware Encryption Insurance 80

Security Affairs

NOVEMBER 23, 2020

likely a pun ) and was published to npm registry around November 11, 2020. Here’s how the malware execution sequence would appear to a Windows user: The “Windows NT is not supported” message shown in the screenshot, however, is a false error thrown by the malware in an attempt to fool both antivirus products and the end-user.

Malware 142

Malware Engineering Antivirus Software 142

Security Affairs

SEPTEMBER 23, 2020

Even today, less than half of the known antivirus engines are flagging the infection on VirusTotal , as observed by BleepingComputer: The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Antivirus 117

Antivirus Government Malware Advertising 117