Monthly Archives: December 2017

Happy IR in the New Year!

At the end of last year Mr. Jake Williams from aka @MalwareJake asked a very important question about Lack of visibility during detecting APT intrusions in twitter. Results show us that endpoint analysis is the most important part of any … Continue reading

Posted in Antivirus | Comments Off on Happy IR in the New Year!

IPv6, it’s waiting for you

IPv6 is an expression IT professionals are likely to have seen or heard at one time, but what exactly is it? Let us give you a quick introduction, and then try to explain what it does differently by comparing it … Continue reading

Posted in Antivirus | Comments Off on IPv6, it’s waiting for you

Facebook phishers want you to “Connect with Facebook”

As we edge toward Christmas, scammers are throwing their own party—in the form of Facebook phishing pages linked to and from bogus landing pages hosted on sites(dot)google(dot)com URLs. These landing pages, adorned with very large and very fake “Login with … Continue reading

Posted in Antivirus | Comments Off on Facebook phishers want you to “Connect with Facebook”

Nhash: petty pranks with big finances

According to our data, cryptocurrency miners are rapidly gaining in popularity. In an earlier publication we noted that cybercriminals were making use of social engineering to install this sort of software on users’ computers. This time, we’d like to dwell … Continue reading

Posted in Antivirus | Comments Off on Nhash: petty pranks with big finances

The seven most colossal data breaches of 2017

If it seems like the words “leak,” “compromised data,” and “breach” are constantly in the news, it’s not just you. The frequency of major data breaches is increasing. According to the Identity Theft Resource Center, the number of breaches is … Continue reading

Posted in Antivirus | Comments Off on The seven most colossal data breaches of 2017

Tech support scammers make browser lockers more resilient

Tech support scammers have been relying on fraudulent pop-ups for many years in order to scare potential victims into calling for remote assistance. These so-called browser lockers (or browlocks) typically originate from malicious ads (malvertising) that can appear on any … Continue reading

Posted in Antivirus | Comments Off on Tech support scammers make browser lockers more resilient

Travle aka PYLOT backdoor hits Russian-speaking targets

At the end of September, Palo Alto released a report on Unit42 activity where they – among other things – talked about PYLOT malware. We have been detecting attacks that have employed the use of this backdoor since at least … Continue reading

Posted in Antivirus | Comments Off on Travle aka PYLOT backdoor hits Russian-speaking targets

Lo lo lo Loapi Trojan could break your Android

Kaspersky has found what they deem as a jack of all trades malicious app they call Trojan.AndroidOS.Loapi. Like the Trojan AsiaHitGroup we discovered last month on Google Play, this malware can do all the things—it’s a downloader, dropper, SMS Trojan, and can … Continue reading

Posted in Antivirus | Comments Off on Lo lo lo Loapi Trojan could break your Android

Jack of all trades

Nowadays, it’s all too easy to end up with malicious apps on your smartphone, even if you’re using the official Google Play app store. The situation gets even worse when you go somewhere other than the official store – fake … Continue reading

Posted in Antivirus | Comments Off on Jack of all trades

A week in security (December 11–17)

Last week we explained what fast flux is and how it’s being abused, we showed you all kinds of Bitcoin-related scams, presented a video recording of a tech support scammer trying to sell free software, and pointed out some free software … Continue reading

Posted in Antivirus | Comments Off on A week in security (December 11–17)