SpyEye-fueled man-in-the-mobile attack targets bank customers
The customers of a European bank have recently been targeted by a man-in-the-mobile attack featuring a SpyEye variant. “The bank uses SMS based mTANs to authorize …
DHL Express spam campaign leads to fake AV
A new spam campaign impersonating the popular mail service DHL Express is currently underway, warn Bkis researchers. The email in question looks like this: Once the user …
Cheap Zeus source code will generate more Trojan variants
Barely two months after cybercriminals put the source code of Zeus up for sale at $100,000, reports are now coming in that the source code is being offered at bargain basement …
Pharmaceutical spam and mobile threats dominate
Wannabe cybercriminals were able to execute attacks with impunity and relative ease thanks to toolkits, pre-written software programs designed to steal information, rendering …
New Android Trojan punishes pirates
A new Android Trojan is up an about, and can be find on several of the most popular file sharing sites in the US and Asia. Disguised as a non-existent version of the …
Massive SQL injection attack compromises 380,000 URLs
A massive SQL injection attack campaign has been spotted by Websense researchers, and the number of unique URLs affected by it has risen from 28,000 when first detected …
Cybercriminals and their favorite baits
According to PandaLabs research, 25 percent of sites used video and multimedia content as bait; 21.63 percent referred to installers or program updates; 16.53 percent claimed …
Qualys partners with StopBadware
Qualys is partnering with the non-profit anti-malware organization StopBadware. The two organizations will leverage one another’s strengths to bolster the Web’s …
New ransomware variant in the wild
A new variant of a piece of ransomware seen in the wild late last year has begun targeting users that made the mistake of landing on the site that serves it via drive by …
Spotify has been displaying malicious ads
Streaming music service Spotify has been displaying malicious ads to users of their Free version. The ads lead to websites that used the Blackhole Exploit Kit to infect users …
Randomization of code and binaries for evading AV solutions
An interesting detection evasion technique by a site that serves fake AV has recently been spotted by a Zscaler researcher. The site’s source code has been randomized so …
Japan leakage analysis emails with malicious XLS attachments
Japan’s seemingly unending series of misfortunes has so far generated a vast variety of online scams. The latest one includes spam emails containing Excel attachments …
Featured news
Sponsored
Don't miss
- ChatGPTriage: How can CISOs see and control employees’ AI use?
- Managing exam pressure: Tips for certification preparation
- Firmware update hides Bluetooth fingerprints
- Critical Exim vulnerability facilitates malware delivery (CVE-2024-39929)
- Risk related to non-human identities: Believe the hype, reject the FUD