- Security
- By Ionut Ilascu
- July 4th, 2015
Matsnu Backdoor Uses RSA Crypto on Exfiltrated Data
Malware can be used to create a threat distribution network
- Security
- By Ionut Ilascu
- May 14th, 2015
Simple Cyber-Attack Techniques and Old Bugs Compromise Govt Systems in Taiwan
Steganography employed to deliver backdoor
- Security
- By Ionut Ilascu
- May 11th, 2015
Spear Phishing Campaign Targets Government Office in Taiwan
Attack may be connected to a larger cyber-espionage operation
- Security
- By Ionut Ilascu
- April 29th, 2015
Mumblehard Malware Targets Linux Servers for Over 5 Years
Thousands of machines have been infected
- Virus alerts
- By Ionut Ilascu
- March 24th, 2015
Yebot Backdoor Built for Wide Range of Malicious Operations
Includes RDP, FTP and SOCKS 5 server support
- Storage
- By Sebastian Pop
- February 17th, 2015
NSA Has Backdoors in HDD Firmware, No One Is Safe Reuters
Kaspersky Labs has exposed a US spying program
- Security
- By Ionut Ilascu
- January 30th, 2015
Skeleton Key Malware Active for Two Years
Threat actors use it with Winnti to compromise networks
- Security Fixes and Improvements
- By Ionut Ilascu
- January 20th, 2015
Oracle Addresses 167 Bugs in Critical Patch Update
One of them is a backdoor planted by the company itself
- Advisories
- By Ionut Ilascu
- January 8th, 2015
Pastebin Used to Deliver Backdoor to Compromised Sites
Legitimate service is abused for nefarious activity
- Advisories
- By Ionut Ilascu
- December 18th, 2014
Coolpad Sells Millions of Android Devices with Pre-Installed Malware
Company plans to expand to US and European markets
- Virus alerts
- By Ionut Ilascu
- November 26th, 2014
Over 23,000 Web Server IP Addresses Connect to CryptoPHP Control Domains
Backdoor spread by thousands of pirated themes and plugins for Joomla, WordPress and Drupal content management systems
- Virus alerts
- By Ionut Ilascu
- October 7th, 2014
Tyupkin Is New ATM Malware That Allows Cash Extraction Without Card
Criminals can select note denomination and cash 40 at a time
- Virus alerts
- By Ionut Ilascu
- October 2nd, 2014
OS X Botnet Malware Uses Reddit to Get IPs of Control Servers
Cybercriminals derive search query from current date
- Security
- By Ionut Ilascu
- September 7th, 2014
OS X Systems Attacked with Windows Spyware by Cyber-Espionage Group
Advanced persistent threat actors show adaptability to new OS environment
- Security Blog
- By Ionut Ilascu
- August 29th, 2014
Bifrose Backdoor Variant Uses Tor, May Work Against It
This Bifrose can do more than just record activity on the affected system
- Security
- By Ionut Ilascu
- August 27th, 2014
Updated NetTraveler Backdoor Has Encrypted Configuration File
Most of the command and control servers in the analyzed samples are in Hong Kong
- Security
- By Ionut Ilascu
- August 26th, 2014
Hardcoded Password in Netis, Netcore Routers Offers Backdoor to Devices
All equipment seems to have the same password in the firmaware