Updated Cryptowall Encrypts File Names, Mocks Victims

Thursday, November 5th, 2015

Cryptowall has gotten a minor, but important facelift that might make it more difficult for researchers to tear apart and for victims to recover their encrypted data without paying a ransom. Spotted two days ago, the latest update to the ransomware has begun not only encrypting data on victims’ machines, but ...

New type of auto-rooting Android adware is nearly impossible to remove

Wednesday, November 4th, 2015

Researchers have uncovered a new type of Android adware that's virtually impossible to uninstall, exposes phones to potentially dangerous root exploits, and masquerades as one of thousands of different apps from providers such as Twitter, Facebook, and even Okta, a two-factor authentication service. The researchers have found more than 20,000 samples ...

Zero-Day Attack Compromises a Half-Million Web Forum Accounts

Wednesday, November 4th, 2015

Forum software-makers vBulletin and Foxit Software may have been breached by a hacker claiming to have made off with personal data belonging to some 479,895 users between the two. “Coldzer0” said in a post co-authored with @Cyber_War_News that he exploited the same zero-day vulnerability for both domains, and was able to ...

Ransomware’s new threat: if you don’t pay, we’ll publish your photos online

Tuesday, November 3rd, 2015

The ‘scareware' variant of the Chimera ransomware trojan has been spotted by the Cologne-based anti-botnet advisory centre, Botfrei (‘Botfree'). The agency says Chimera is a classic blackmail trojan which is now targeting specific employees in German companies with fake emails about job applications or job offers. The emails point them to a Dropbox ...

Hackers use anti-adblocking service to deliver nasty malware attack

Monday, November 2nd, 2015

More than 500 websites that used a free analytics service inadvertently exposed their visitors to a nasty malware attack made possible by a hack of PageFair, the anti-adblocking company that provided the analytics. The compromise started in the last few minutes of Halloween with a spearphishing e-mail that ultimately gave the ...