Tag Archives: RAT

10Fold- Security Never Sleeps- 160

And Now a Ransomware Tool That Charges Based On Where You Live

“Fatboy making rounds on Crimeware forums”

Recorded Future has been monitoring malware and its effects in less developed nations, reporting the discrepancies between charges made on victims living in wealthier countries.

Software Download Mirror Distributes Mac Malware

“Distributes a RAT for Mac devices”

The download mirror server for HandBrake, a video converting tool, was recenty compromised to distribute a RAT to Mac computers. Security alerts were posted on the firms website, announcing that between Tuesday and Saturday of last week Mac users may have downloaded compromised software. HandBrake suggests all users verify any downloads before running them.  

Google Researchers Say They Found A ‘Crazy Bad’ Windows Bug

“Weaknesses observed in Edge and Internet Explorer browsers”

Many popular browsers and antivirus programs have weaknesses, recently reported by Project Zero. Natalie Silvanovich, former security researcher at BlackBerry, leaked the story via Twitter over the weekend.

Phishing Scams Cost American Businesses Half A Billion Dollars A Year

“Over 22,000 incidents in the last three years”

Since October of 2013 more than $1.6 billion has been scammed from American firms. All states have been affected, and there does not see to be any obserable trend in the specific type of firms targeted.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 152

Malware Allows Remote Administration of ATMs

“Software allows for ejection of cash”

Kaspersky Labs has recently revealed malware code that is capable of remotely gaining administration functions of ATM’s. This was discovered after a Russian bank was targeted by cybercriminals, who used the malware to access several ATM’s. The code was not deleted after the theft, however, leaving pieces for researchers to analyze and ascertain how the code was developed.

New RAT Uses Sites for Command and Control

“Well trafficked sites largely affected”

Talos researchers are now saying that popular and legitimate websites are now being used by ‘ROKRAT’ for data exfiltration. Distributed via email, ROKRAT uses a HWP document to target victims in Korea. The phishing attacks feign legitimacy by faking a reputable senders email, such as the contact email of the Korea Global Forum in several instances.

How an IoT DDoS warning system helps predict cyberattacks

“Current defensive measures limited”

DDoS attacks are devestating for victims by preventing any traffic for their website, however require comparatively little resources for malicious actors. Preventive measures are currently in use by many sites, but are not always sufficient in protecting small or medium level firms and other organizations.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 146

WikiLeaks releases ‘entire hacking capacity of the CIA’

“Over 8,000 pages disclosed”

WikiLeaks has released what is being called the entire hacking capacity of the CIA in a large data dump on Tuesday. Within the 8,761 documents included in ‘Vault 7’ were acquired from a ‘high-security’ CIA network from the Center of Cyber Intelligence in Virginia. The group of data had been “circulated among former U.S. government hackers and contractors,” and was released to WikiLeaks by one of these contractors.

StoneDrill wiper malware finds new targets

“European and Middle Eastern hard drives affected”

Wiper malware has made a huge come back from it’s 2012 debut, attacking several targets in multiple continents. Security experts worry over the maware’s past, citing the Shamoon attack against Saudi Aramco which resulted in the loss of 30,000 workstations and their data. “Dark Seoul Gang” have more recently used the software to attack South Korean bank hard drives and facilities maintaining broadcasting and financial services.

macOS RAT Uses 0-Day for Root Access

“Unpatched zero-day vulnerability used to gain remote access to devices”

Currently being advertised in one of the leading underground markets, the RAT Proton was found on a cloned Russian cybercrime message board. Sixgill researchers report that it is being offered for two bitcoins, or roughly $2,500 for single installations, a cause for concern among those that use MacOS products.

Why email is safer in Office 365 than on your Exchange server

“Running your own servers doesn’t do much for security it seems”

Bypassing the complicated management and monitoring of private servers isn’t the only plus to a cloud service application. The sheer scale of cloud-based mail providers, such as Office 365, have the capabilities to prevent advanced malware and phishing attempts making them easier to spot, along with other protections.

Enjoy your read? Check out our other content here.