Pág 9 de 9 PrimeiroPrimeiro ... 789
Resultados 161 a 177 de 177

Tópico: Flame e outras cenas perigosas

  1. #161
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    This hard drive will self destruct. Data-wiping malware targets Europe
    Meaner strain of Shamoon makes comeback, joined by new, never-before disk wiper.

    https://arstechnica.com/security/201...argets-europe/
    File-Less Malware Attack Uncovered & Identified

    Rule # 119 of the Cyber-Squirrel Handbook: Sometimes it's best not to taunt a Cyber Security Organization with hidden code in super stealthy malware.

    On the 24th of February, Twitter user Simpo posted a picture of a string of malicious code with the words "SourceFireSux" encoded in Base64. This drew the interest of Cisco's Cyber Threat Intelligence Team "Talos," as many on that team are former members of the SourceFire Vulnerability Research group.

    The Talos team accepted this challenge and began to hunt for a complete sample. After scouring the internet and piecing together code segments, Talos had unraveled what would be an ultra complex and sophisticated attack. An attack that is capable of executing malicious code and communicating with its handlers without writing a single byte to the file system. Thanks to Crixus for the links and write-up!

    http://www.hardocp.com/news/2017/03/...red_identified
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  2. #162
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Star Trek-themed ransomware "Kirk" has a Spock decryptor, uses Monero for payments

    https://www.neowin.net/news/star-tre...o-for-payments
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  3. #163
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    New ransomware invites you to play a game and unlock your data with a high score

    "Rensenware" will encrypt your data, but instead of asking for your money, it will instead ask you to play a video game and gain a high score. Now, this might seem like a fairly easy task, but the game it asks you to play is called Touhou Seirensen ~ Undefined Fantastic Object. If the game sounds unfamiliar, don't worry, it probably isn't something you'd pick up on a regular basis.

    https://www.neowin.net/news/new-rans...h-a-high-score
    Booby-trapped Word documents in the wild exploit critical Microsoft 0day
    There’s currently no patch for the bug, which affects most or all versions of Word.

    https://arstechnica.com/security/201...icrosoft-0day/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  4. #164
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Over 1000 InterContinental and Holiday Inn hotels infected with credit card stealing malware

    https://www.neowin.net/news/over-100...ealing-malware
    Tired of conventional malware? Meet ransomware-as-a-service Karmen

    Based on the open source ransomware proof-of-concept Hidden Tear, Karmen uses AES-256 bit encryption to lock the user out of his or her computer. As is typical with malware of this kind, it then offers a note with instructions about the amount of money needed to be paid to release the files. But it does go a step further, as in case it detects a sandbox environment or analysis software on the victim’s computer, Karmen automatically deletes its own decryptor.

    https://www.neowin.net/news/tired-of...service-karmen
    The Shadow Brokers Make Patching a Thing
    ...
    Enter EternalBlue and it's spawn, DoublePulsar. These tools are part of a nasty piece of kit recently released by the Shadow Brokers, giving Nation State power to cyber criminals around the globe. Essentially, this kit enables attackers to exploit ancient vulnerabilities present in operating systems from Windows XP to Server 2008. EternalBlue works by exploiting a remote code-execution bug in the latest version of Windows 2008 R2 (and everything prior) using the server message block and NetBT protocols. Once EternalBlue's handywork is complete, DoublePulsar steps in and establishes a comand and control (C2) channel using previously obscure features built in to SMB. Once a C2 channel is established an attacker is free to wreak as much havoc as they can handle.
    ...
    https://www.hardocp.com/news/2017/04...patching_thing
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  5. #165
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Banking trojan executes when targets hover over link in PowerPoint doc
    Novel infection method doesn't require link to be clicked.

    https://arstechnica.com/security/201...er-hyperlinks/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  6. #166
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Researchers Discover Most Dangerous Infrastructure Malware To Date
    ...
    CrashOverRide represents a very scalable platform with modules and capabilities that allow it to focus on infrastructure that utilize four standard industry control system (ICS) protocols. These protocols are commonly used in power generation infrastructure outside of the United States, however, researchers state that CrashOverRide is so versatile that tailoring it for US based power systems would take only moderate effort. Tailoring ChrashOverRide to affect water, gas and transportation systems is also estimated to be relatively trivial. Keep in mind that CrashOverRide is not exploiting any vulnerabilities with these protocols. It is leveraging legitimate protocols to take advantage of systems that were never meant to be internet facing in the first place.
    ...
    https://www.hardocp.com/news/2017/06...alware_to_date
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  7. #167
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Advanced CIA firmware has been infecting Wi-Fi routers for years
    Latest Vault7 release exposes network-spying operation CIA kept secret since 2007.

    https://arstechnica.com/security/201...stening-posts/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  8. #168
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Honda shuts down factory after finding NSA-derived Wcry in its networks
    Automaker briefly stops making cars to contain worm that first struck in May.

    https://arstechnica.com/security/201...honda-factory/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  9. #169
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    A new ransomware outbreak similar to WCry is shutting down computers worldwide
    Like earlier ransomware worm, new attacks use potent exploit stolen from the NSA.

    https://arstechnica.com/security/201...ers-worldwide/
    Petya virus is something worse than ransomware, new analysis shows

    https://www.theverge.com/2017/6/28/1...analysis-shows
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  10. #170
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    The Petya ransomware is starting to look like a cyberattack in disguise
    The ransomware that wasn’t

    The haze of yesterday’s massive ransomware attack is clearing, and Ukraine has already emerged as the epicenter of the damage. Kaspersky Labs reports that as many as 60 percent of the systems infected by the Petya ransomware were located within Ukraine, far more than anywhere else. The hack’s reach touched some of the country’s most crucial infrastructure including its central bank, airport, metro transport, and even the Chernobyl power plant, which was forced to move radiation-sensing systems to manual.

    https://www.theverge.com/2017/6/28/1...ukraine-russia
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  11. #171
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    WikiLeaks reveals CIA targeting Linux users with OutlawCountry malware

    https://www.neowin.net/news/wikileak...ountry-malware
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  12. #172
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Avast! There’s malware in that CCleaner software update
    Avast's recent acquisition spreads a backdoor signed with its own certificate.

    https://arstechnica.com/information-...s-to-ccleaner/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  13. #173
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    CCleaner malware targeted internal networks at Google, Microsoft, and Samsung
    More sophisticated than your average malware

    https://www.theverge.com/2017/9/21/1...-samsung-china
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  14. #174
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    CCleaner backdoor infecting millions delivered mystery payload to 40 PCs
    Samsung, Asus, Fujitsu, Sony, and Intel among those infected.

    At least 40 PCs infected by a backdoored version of the CCleaner disk-maintenance utility received an advanced second-stage payload that researchers are still scrambling to understand, officials from CCleaner's parent company said.
    ...
    https://arstechnica.com/information-...oad-to-40-pcs/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  15. #175
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    The good news and bad news about today’s massive Wi-Fi bug
    It’s hard to exploit, and hard to patch

    https://www.theverge.com/2017/10/16/...-install-patch
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  16. #176
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Criminals Are Selling LokiBot, the First Hybrid Android Malware, for $2,000 on the Dark Web
    ...
    SfyLabs security researchers have published a report revealing that LokiBot is being sold on the dark web for $2,000 worth of bitcoins. The malware works similar to other popular malicious programs using phishing attacks. Showing fake login screens on top of popular, trusted apps like Skype, WhatsApp and banking apps, the banking trojan is activated on the target device after asking for administrator privileges.
    ...
    http://wccftech.com/criminals-sellin...-malware-2000/
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  17. #177
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,516

    Default

    Boas!

    Banking Trojan Targets Google Search Results

    It has become common for users to use Google to find information that they do not know. In this situation, the threat actors decided to take advantage of this behavior by using Search Engine Optimization (SEO) to make their malicious links more prevalent in the search results, enabling them to target users with the Zeus Panda banking Trojan. After reading the blog, I found it pretty interesting how they did this hack. The variety of ways hackers continue to adjust to the cyber landscape is fascinating.

    https://www.hardocp.com/news/2017/11...search_results
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

Bookmarks

Bookmarks

Regras para postar

  • Não pode criar novas threads
  • Não pode responder a tópicos
  • Não pode colocar attachments
  • Não pode editar os seus posts
  •