Category: Anti-malware

5th May 2017 By  Catalin Cimpanu   A new Ransomware-as-a-Service has become available on the Dark Web, named FrozrLock, available for only $220, and advertised under the tagline of “great security tool that encrypts most of your files in several minutes.”   Bleeping Computer received a tip about FrozrLock’s existence from security researcher David Montenegro,… Continue reading FrozrLock Ransomware Advertised on the Dark Web As “Great Security Tool”

5th May 2017  By Catalin Cimpanu                                                   Russian cyberspies have developed a new breed of backdoor trojan that features several novel techniques, including an API that allows attackers to reverse the C&C communications flow when needed.   This new threat came to light… Continue reading Cyber-Espionage Malware Is So Advanced It Has Its Own API

5th May 2017  By Andrew London   Soon you’ll never have to fear malware again   Microsoft is in the testing stage of a new feature in its Edge browser for Windows 10 that is malware-proof as it partitions the browser window from the rest of the computer. This will be a welcome addition for… Continue reading Microsoft is testing a malware-proof Edge browser

    This past Wednesday, there was a rather large-scale email spam campaign involving a fake Google Docs app that affected around one million users. This attack lured users into allowing a malicious application named “Google Docs” access to their Gmail account and contacts list, causing the spam email to be sent to everyone on… Continue reading The dark side of Google Docs

Here we go again, the release to the general public of a product before the security has been strengthened.   Scientists are urging programmers to strengthen security in brain-computer interfaces while there’s still time.   By Sophie Weiner May 5, 2017                                  Epoc+ is an $800 headset made by Emotiv that uses your… Continue reading Brainwave-Reading Headsets Could Help Hackers Guess Your Passwords

The TLS client authentication protocol has been a part of the security standard for years, but is just now coming into its own in certifying secure IoT connections.   5th May 2017  by Michael Heller   Client-side TLS certificates may not be new, but experts said these certs could find new life to ensure secure… Continue reading TLS client authentication ensures secure IoT connection

Zeljka Zorz – May 5, 2017   Bitdefender researchers have unearthed a previously unknown malware framework that, unlike those used by most APTs, contains many legitimate utilities.   Dubbed Netrepser, the framework is used to find and exfiltrate all kinds of information from compromised Windows systems. The researchers believe that it is wielded by a… Continue reading Malware framework using legitimate utilities lobbed at government agencies

May 4, 2017 by William Tsing                                               There’s a lot of very unique, creative, and devastating cyber threats out there. The first inclination of a defender is to collect news of the new and terrifying and concentrate on network security defenses accordingly. This is… Continue reading OWASP Top Ten – Boring security that pays off

By Eduard Kovacs on May 04, 2017   Cisco has released a firmware update for one of its small business routers to address a critical vulnerability that can be exploited for denial-of-service (DoS) attacks and arbitrary code execution.   The vulnerability, discovered by researchers from GeekPwn, a China-based IoT-focused hacking competition, affects CVR100W Wireless-N VPN… Continue reading Cisco Patches Critical Flaw in Small Business Router

After May 9, 2017, Windows 10 devices running version 1507 will no longer receive security and quality updates. Microsoft recommends updating devices to the latest version of Windows 10 by visiting the Software Download site and selecting Update now to manually update your device. For additional info, check out the Windows lifecycle fact sheet. Full Article  … Continue reading Windows 10 version 1507 will no longer receive security updates