Category Archives: Antivirus

A vulnerable driver: lesson almost learned

Recently, we started receiving suspicious events from our internal sandbox Exploit Checker plugin. Our heuristics for supervisor mode code execution in the user address space were constantly being triggered, and an executable file was being flagged for further analysis. At … Continue reading

Posted in Antivirus | Comments Off on A vulnerable driver: lesson almost learned

New Deepfakes forum goes mining with Coinhive

You may or may be familiar with the furore over Deepfakes, a relatively new development in pornography involving a tool called FacesApp, which is capable of producing a real porn clip that replaces the original actors’ heads with those of celebrities—or … Continue reading

Posted in Antivirus | Comments Off on New Deepfakes forum goes mining with Coinhive

Gas is too expensive? Let’s make it cheap!

A few months ago, while undertaking unrelated research into online connected devices, we uncovered something surprising and realized almost immediately that we could be looking at a critical security threat. What we found was a simple purple web interface that … Continue reading

Posted in Antivirus | Comments Off on Gas is too expensive? Let’s make it cheap!

Bogus hack apps hack users back for cryptocash

Recently, we discovered a gold…er…APK mine of fake hacking apps. The “legitimate” versions of hack apps are intended to hack other apps in order to get something for free. Although it’s unclear what exactly these fake apps claim to hack, the real hack job … Continue reading

Posted in Antivirus | Comments Off on Bogus hack apps hack users back for cryptocash

New Mac cryptominer has 23 older variants

On February 1, a new Mac cryptominer was discovered being distributed via a hack of the MacUpdate website. Since then, we’ve been doing some digging and found that this isolated incident was just the tip of the iceberg. The malware … Continue reading

Posted in Antivirus | Comments Off on New Mac cryptominer has 23 older variants

BSides NYC, a volunteer organized event put on by and for the community

Another edition of BSides NYC has passed, and as first time attendee and presenter, I was genuinely impressed with the impeccable organization, the content shared, and the interesting conversations that took place among enthusiasts and professionals from all over the … Continue reading

Posted in Antivirus | Comments Off on BSides NYC, a volunteer organized event put on by and for the community

DDoS attacks in Q4 2017

News overview In terms of news about DDoS attacks, the last quarter of 2017 was livelier than the previous one. Some major botnets were discovered and destroyed. For instance, early December saw the FBI, Microsoft, and Europol team up to … Continue reading

Posted in Antivirus | Comments Off on DDoS attacks in Q4 2017

Safer Internet Day 2018: ad blockers and anti-trackers

The path to a safer Internet can be a bit of a quandary. What programs should you buy? How long should your passwords be?  Is it okay to write them down? What makes a website secure? All of these questions … Continue reading

Posted in Antivirus | Comments Off on Safer Internet Day 2018: ad blockers and anti-trackers

Tech support scammers find new way to jam Google Chrome

During the past quarter we have noted an increase in fake browser alerts pushing tech support scams. Most of these campaigns come from malicious advertising but also via compromised web sites. Crooks are using all sorts of tricks to not … Continue reading

Posted in Antivirus | Comments Off on Tech support scammers find new way to jam Google Chrome

New Flash Player zero-day comes inside Office document

A new Flash Player zero-day has been found in recent targeted attacks, as reported by KrCERT. The flaw, which exists in Flash Player 28.0.0.137 and earlier versions, allows an attacker to remotely execute malicious code. On February 1, Adobe published a … Continue reading

Posted in Antivirus | Comments Off on New Flash Player zero-day comes inside Office document