You are here:-Anti-Malware

anti-Malware

By | 2017-12-27T08:48:32+00:00 December 26th, 2017|Categories: Anti-Malware|

Android’s regular security update for December 2017 included a fix for a serious vulnerability that could allow attackers to modify installed apps without affecting their signature. This would allow an attacker to gain access to the affected device (indirectly). First found by researchers in July, this vulnerability (designated as CVE-2017-13156, and also called the Janus vulnerability) affects

Comments Off on

By | 2018-01-15T19:27:23+00:00 December 26th, 2017|Categories: Anti-Malware|

Android’s regular security update for December 2017 included a fix for a serious vulnerability that could allow attackers to modify installed apps without affecting their signature. This would allow an attacker to gain access to the affected device (indirectly). First found by researchers in July, this vulnerability (designated as CVE-2017-13156, and also called the Janus vulnerability) affects

Comments Off on

By | 2017-12-21T17:05:50+00:00 December 21st, 2017|Categories: Anti-Malware|

by Lenart Bermejo and Hsiao-Yu Shih We found a new cryptocurrency-mining bot spreading through Facebook Messenger, which we first observed in South Korea. We named this Digmine based on the moniker (비트코인 채굴기 bot) it was referred to in a report of recent related incidents in South Korea. We’ve also seen Digmine spreading

Comments Off on

By | 2018-01-15T18:55:25+00:00 December 21st, 2017|Categories: Anti-Malware|

by Lenart Bermejo and Hsiao-Yu Shih We found a new cryptocurrency-mining bot spreading through Facebook Messenger, which we first observed in South Korea. We named this Digmine based on the moniker (비트코인 채굴기 bot) it was referred to in a report of recent related incidents in South Korea. We’ve also seen Digmine spreading

Comments Off on

By | 2017-12-20T14:12:56+00:00 December 20th, 2017|Categories: Anti-Malware|

by Rubio Wu, Anita Hsieh, and Marshall Chen The Cobalt hacking group was one of the first to promptly and actively exploit CVE-2017-11882 (patched last November) in their cybercriminal campaigns. We uncovered several others following suit in early December, delivering a plethora of threats that included Pony/FAREIT, FormBook, ZBOT, and Ursnif. Another stood

Comments Off on

By | 2017-12-19T13:56:58+00:00 December 19th, 2017|Categories: Anti-Malware|

by Ecular Xu and Grey Guo Android malware like ransomware exemplify how the platform can be lucrative for cybercriminals. But there are also other threats stirring up as of late: attacks that spy on and steal data from specific targets, crossing over between desktops and mobile devices. Take for instance several malicious apps

Comments Off on

By | 2017-12-19T01:16:42+00:00 December 18th, 2017|Categories: Anti-Malware|

Earlier this year researchers first disclosed a targeted attack campaign targeting various sectors in the Middle East. This threat actor was called Two-tailed Scorpion/APT-C-23. Later on, a mobile component called VAMP was found, with a new variant (dubbed FrozenCell) discovered in October. (We detect these malicious apps as ANDROIDOS_STEALERC32). VAMP targeted various types of data from the phones

Comments Off on

By | 2017-12-14T23:09:54+00:00 December 14th, 2017|Categories: Anti-Malware|

by David Sancho and Fernando Merces For a while now, Trend Micro has focused its efforts on covering ATM malware, especially new families that come up with features that stealthily target banking customers. In this blog post, we’re going to cover two that have recently come to our attention: Prilex and Cutlet Maker. Each of

Comments Off on

By | 2017-12-13T17:46:34+00:00 December 13th, 2017|Categories: Anti-Malware|

It was a relatively low-key year-ender for Microsoft’s Patch Tuesday, as the company’s monthly release of updates was relatively light in terms of noteworthy vulnerabilities. With that said, there were still a few notable vulnerabilities that were addressed. Perhaps the most significant of these were CVE-2017-11937 and CVE-2017-11940, two remote code execution vulnerabilities

Comments Off on

By | 2017-12-11T17:10:36+00:00 December 11th, 2017|Categories: Anti-Malware|

by Daniel Lunghi, Jaromir Horejsi, and Cedric Pernet Patchwork (also known as Dropping Elephant) is a cyberespionage group known for targeting diplomatic and government agencies that has since added businesses to their list of targets. Patchwork’s moniker is from its notoriety for rehashing off-the-rack tools and malware for its own campaigns. The attack

Comments Off on