News

Malware: Latest news on malware attacks, targets, botnets and threats in the world of cybersecurity

The cybersecurity update from India and around the world on latest malware, potential threats, malware groups for enterprise security experts, information security professionals and researchers.  

CSO Feb 13th 2019 A-A+

________________

January 2019
________________
 

Coin mining malwarealibaba-cso

A coin mining malware developed by threat actor Rocke has been found to have the ability to uninstall five different cloud security protection and monitoring products developed by Tencent Cloud and Alibaba Cloud.

Coin mining malware can uninstall Tencent, Alibaba cloud security

 

Rocke-coinminerRocke coinminer

Known as Rocke in the security industry, the group has been active since at least April 2018 and is known for exploiting critical vulnerabilities in web application frameworks and servers like Apache Struts, Oracle WebLogic and Adobe ColdFusion.

Rocke coinminer disables cloud protection agents

________________

November 2018
________________
 

WannacryWannaCry

The percentage has risen over the last year, demonstrating more than two thirds growth against Q3 2017, when its share in cryptor attacks was 16.78 percent.

 

WannaCry is still alive hitting almost 75,000 users in Q3 2018

 

How the Lazarus group is emptying millions from ATMsLazarus Group strikes again

Lazarus first breaches targeted banks’ networks and compromises the switch application servers handling ATM transactions.

How the Lazarus group is emptying millions from ATMs

________________

September 2018
________________
 

neweggNewegg attack

Electronics retailer Newegg has confirmed that credit card information taken during the last month appears to have been stolen via a JavaScript injection.

 

Newegg confirms credit card information was taken in a sophisticated attack
 

________________

August 2018
________________
 

Seqrite detects more than 1.5 lakh incidents related to the Emotet TrojanEmotet Trojan

Security researchers at Seqrite have identified an evolution in the infamous Banking Trojan which wreaked havoc four years ago, tracking its transformation into a complex threat distributor distributing multiple attack payloads.

Seqrite detects more than 1.5 lakh incidents related to the Emotet Trojan

________________

July 2018
________________
 

Seqrite detects high-risk Trojan that targets businessesMultipurpose ransom-miner

The multipurpose ransom-miner was detected by Seqrite experts when they observed a series of evolved malware blocked by the brand’s state-of-the-art security solutions at the customers’ end.

Seqrite detects high-risk Trojan that targets businesses

________________

May 2018
________________
 

Aditya Birla Group suffers cryptojack attack; 2000 computers used for mining MoneroAditya Birla Group suffers cryptojack attack

First detected at an overseas subsidiary of the group a month ago, the malware spread to manufacturing and other services companies of Aditya Birla group. Monero was the currency mined.

Aditya Birla Group suffers cryptojack attack; 2000 computers used for mining Monero

 

________________

April 2018
________________
 

Roaming Mantis: Android malware distributed through DNS hijack targets smartphonesRoaming Mantis

The attackers behind the malware seek out vulnerable routers for compromise and distribute the malware by hijacking the DNS settings of infected routers. The method of router compromise remains unknown.

Roaming Mantis: Android malware distributed through DNS hijack targets smartphones
 

________________

February 2018
________________
 

Reaper emerges a cyber security threat for global enterprisesReaper

APT37, popularly known as Reaper has been primarily targeting the chemicals, electronics, manufacturing, aerospace, automotive, and healthcare industries for North Korean state interests.

Reaper emerges a cyber security threat for global enterprises

 

Cryptomining malwareCrypto-mining malware

A malicious version of the widely used tool Browsealoud managed to infect more than 4,000 websites to mine digital currency, Monero for over four hours.

Over 4,000 UK, US and Australia government sites infected by global crypto-mining malware

 

________________

January 2018
________________
 

Porn-malwarePorn malware

Security researchers have discovered malicious code – dubbed AdultSwine – on Google Play Store that hides itself inside ​around 70 game apps​, many which are used by children.

Porn malware hidden in children’s apps