The banking trojan is spreaded through mails with malicious attachments. It builds a PowerShell command from a downloaded image, thanks to steganography.
Recorded Future cyber security experts: He sold it to other two actors: Sanix and Clorox. Also a Russian hacker is sharing a db of 100 billion user accounts.
Cyber security expert Luka Šikić of WebARX: The flaw could allow attackers to modify the installation options. There is a patch, the plugin has to be updated ASAP.
Chris Jackson: We’re not supporting new web standards for it. This could cause serious problems to the users’ cyber security. It has already happened recently.
Also Italy is affected. MalwareMustDie cyber security experts: bad actors steal info from weak sites, then target finance payment portals and online banking sites.
Wandera: A vulnerability in the e-ticketing systems could expose PII to malicious hackers. Less than a month ago a major security breach affected more than 140 companies.
Yoroi-Cybaze cyber security experts: cybercrime and state-sponsored hackers use simple social engineering tricks to lure users to enable the malicious Macros.
Spanish cyber security startup Alias Robotics developed the tool. It detects vulnerable industrial routers and robots powered by ROS, SROS and other technologies.
ESET cyber security experts: It’s a follow-up of the cybercrime attacks of the last October with the same malware. Also Ukraine, France, Germany, and Japan affected.
Sucuri cyber security experts: We discovered a very well hidden encoded spam injector malware in an unsuspicious file, that was disguised as a theme’s license key.