TrickBot malware has collected login credentials from 250 million email addresses
TrickBot, the malware discovered in 2016, has collected the passwords and address books of 250 million e-mail addresses. Investigators from security company Deep Instinct have found that, reports TechCrunch.
TrickBot was originally a financially motivated malware that was first spotted in 2016. Sinc... Read more
Emotet malware is experiencing explosive growth
The number of variants of the Emotet malware is experiencing explosive growth, as discovered by security company G DATA. The malware was still aimed at financial institutions when it was discovered in 2014, but is now widely used for industrial espionage, for example.
Emotet is one of the most destr... Read more
Agent Smith malware infects more than 25 million Android devices worldwide
Check Point security researchers have discovered a new malware called Agent Smith. The malware, disguised as a Google-related application, has infected more than 25 million devices worldwide, of which 15 million in India alone.
Agent Smith replaces automatically installed apps with malicious version... Read more
U.S. city dismisses IT employee after paying ransomware-discharge money
Officials from Lake City in the state of Florida dismissed an IT employee after the city was forced to approve a large ransom demand due to a ransomware attack. Almost $500,000 was paid.
The employee was fired last Friday, writes ZDNet. The city's IT manager also wants to modify the entire city's IT... Read more
Malware infected fully patched Windows systems via Excel macros
Microsoft warns of a malware that uses Office features to compromise Windows systems. The malware does not take advantage of a bug in the software, but uses malicious macro features in an Excel attachment to compromise fully patched Windows PCs.
According to Microsoft's Security Intelligence team, a... Read more
U.S. city pays $600,000 to ransomware group
The city council of Riviera Beach, a city in the American state of Florida, has decided to pay a ransomware group $600,000. In this way, the city council hopes to recover data that was encrypted in an attack three weeks ago.
On 29 May, an employee of the police in Riviera Beach opened an e-mail, wh... Read more
Researchers discover Linux version of Winnti malware
Chronicle security researchers have discovered a Linux version of Winnti malware for the first time. According to Alphabet's cyber security division, the Linux version acts as a backdoor for infected hosts, giving attackers access to compromised systems.
The Linux version would be very similar to th... Read more
Ransomware poses as anti-virus software to infect victims
A successful family of ransomware called Dharma is now trying to infect victims by posing as anti-virus software. Specifically, the malware presents itself as an old version of security company ESET.
Dharma first appeared in 2016 and is responsible for several major incidents, including the encrypt... Read more
Botnet targeting Electrum Wallet steals $4.6 million
A botnet used to steal money from the Electrum bitcoin wallet network continues to grow. According to researchers, at its peak, it passed over 150,000 hosts. A total of $4.6 million has now been stolen from victims.
The botnet was first discovered on 8 April, writes Silicon Angle. This is a new vari... Read more
Rapidly spreading cryptomining malware uses NSA code
A new form of cryptomining malware uses hacking codes from the US National Security Agency (NSA). The malware is spreading rapidly throughout Asia, writes Silicon Angle.
Symantec security researchers discovered the malware last week and called it Beapy. Beapy mainly focuses on enterprise networks. M... Read more