Microsoft Defender will now offer automatic malware remediation
The change to a key setting is designed to limit the damage that an infection can cause in an enterprise setting.
Microsoft is enhancing security for users of Microsoft Defender for Endpoint by changing a key setting in the software. Specifically, they are switching the default setting from opti...
Hackers use Covid-19 vaccine to spread malware
Security researchers have uncovered a new phishing campaign that uses the Covid-19 pandemic vaccine news to spread malware and Business Email Compromise (BEC) attacks. The attacks target people in businesses by pretending to be organizations involved in the manufacture of vaccines, the WHO, and DHL...
MacOS malware with crypto miner remained undiscovered for years
In the last five years (perhaps more), macOS users have been targeted by a sneaky malware operation, which used a clever trick, making it virtually invisible, while hijacking hardware resources on infected machines to mine cryptocurrency.
The malware has been distributed in the wild since at lea...
Microsoft fixes Defender’s zero-day vulnerability on Patch Tuesday
Microsoft’s latest monthly security patches came out on Patch Tuesday, with the fix for Defender’s zero-day included. January's updates patch a total of 83 vulnerabilities, spread out over a wide range of Microsoft's products. They include cloud-based offerings, the Windows OS, Enterprise Serve...
Malware uses WiFi BSSID to identify victims
The malware authors the WiFi AP MAC address (aka BSSID) to geo-locate the systems they have infected.
Malware operators who want to know the location of their victims usually rely on a simple technique to determine the infected system's location. They simply grab the victim's IP address and che...
Third party browser extensions infect millions with malware
Researchers say that around 3 million people worldwide have been affected.
Threat Intelligence researchers from Avast this week announced that they have found 28 extensions for the Google Chrome and Microsoft Edge browsers that contain malware.
According to Avast, the add-ons presented thems...
New Information-Stealing Trojan goes after Outlook files and more
Python-based malware family targets Microsoft users to steal Outlook processes and browser credentials.
The good people at Palo Alto Networks have identified a new cybersecurity threat. Their Unit 42 researchers have been tracking the threat group AridViper, which has been targeting the Middle E...
Meet Egregor: the next big malware threat to your business
The new group has become the leading ransomware variant, say industry experts.
A new ransomware group has emerged on the scene and quickly shot up to the top in terms of threat magnitude.
Cybersecurity researchers at Digital Shadows say the new variant is becoming increasingly prolific. Cybe...
Drupal sites are vulnerable to a hacking trick popular in the 90s
The team that makes the Drupal CMS (Content Management System) has released security updates to fix a critical vulnerability, giving attackers full control over Drupal sites. Drupal is the fourth most-used CMS on the internet, trailing WordPress, Shopify, and Joomla.
The vulnerability was rated ...
Mac certificate check prompts privacy fears among App users
How much does Apple know about our use of Apps?
Last week Mac users started to complain about a slowdown in performance. Users began noticing that included apps were sometimes taking minutes to launch, and elsewhere there was non-responsiveness and other problems throughout macOS.
The issues ...
BlackBerry discovers hacker group selling their services
BlackBerry's security team has come across a group of hackers offering their services for hire. The group calls itself CostaRicto and appears to be based in South Asia.
The group is responsible for a series of orchestrated attacks on every continent, although most attacks take place in India, Ba...
New ‘Ghimob’ Android Trojan can spy on 153 mobile apps
Security experts have discovered a new malware that can spy and obtain data from 153 Android applications.
According to the report released on Monday by security firm Kaspersky, Ghimob (an Android banking Trojan) is believed to have been developed by the same group that developed Guildma (Astaro...