Defense and Security goes on vacation for a week
Transmissions will be interrupted from August 12th to 19th, subjects to exceptions. We will return soon with the usual news, insights and curiosities.
Varenyky, a new spambot for sextortion scam campaigns in France
ESET cyber security experts: The malware targets people when they are using sites related to sex, pornography, and known pornographic sites. It excludes not French and it’s evolving.
North Korea stole US$ 2bn with cyber attacks to fund It’s weapons program
It has been unveiled by a leaked United Nations report. Pyongyang state sponsored hackers as Lazarus preferred cryptocurrency to avoid international controls on money flux.
Cyber Espionage, APT28 leaverages IoT to access corporate networks
Microsoft cyber security experts: The Russian group aka Fancy Bear, Pawn Storm, Sofacy Group, STRONTIUM, and Sednit) tried to compromise devices to gain initial access.
Cyber Espionage, Machete operators target Venezuela military
ESET cyber security experts: There are also attacks on Ecuador, Colombia and Nicaragua. The malware operators use spear phishing campaigns with real old documents as a lure.
DealPly evolves, it abuses reputation services to avoid detection
enSilo: The DealPly adware is evolving, the malware abuses Microsoft and McAfee reputation services to remain under the radar DealPly adware is evolving: there is a new variant of the malware that abuses Microsoft and McAfee reputation services to remain…
Cybercrime and other APTs are copying North Korea cyber attacks
F-Secure cyber security experts: The target is the banking/finance sector. The motivations are three: data theft, data integrity and sabotage, and direct financial theft.
Cybercrime spreads a new mobile ransomware: Android / Filecoder.C
ESET's cyber security experts: Malware, in addition to data encryption, uses the victim's contact list to send SMS with malicious links. The attack, however, can be easily detected.
New cybercrime tool agains the banking sector: ATM Malware
Yoroi-Cybaze ZLAB cyber security experts: It doesn’t rely on standard communication interfaces, suggesting increased level of customization. It leverages Java Instrumentation techniques.
One of the worst enemies for Cybercrime are the automatic translators
Cyber security experts: to maximize the spread of phishing and malspam campaigns, messages are translated without checking in multiple languages. Victims have a weapon to detect fraud.