HackDig : Dig high-quality web security articles

Update now—July Patch Tuesday patches include fix for exploited zero-day

It’s time to triage a lot of patching again. Microsoft’s July Patch Tuesday includes an actively exploited local privilege escalation vulnerability in the Windows Client/Server Runtime Subsystem (CSRSS). This vulnerability immediately made it to the Cybersecurity & Infrastructure Security Agency (CISA) list of known to be exploited in the wild list that
Publish At:2022-07-13 11:52 | Read:429 | Comments:0 | Tags:Exploits and vulnerabilities adobe azure site recovery Cisco

WinDealer dealing on the side

Introduction LuoYu is a lesser-known threat actor that has been active since 2008. It primarily goes after targets located in China, such as foreign diplomatic organizations established in the country, members of the academic community, or companies from the defense, logistics and telecommunications sectors. In their initial disclosures on this threat actor,
Publish At:2022-06-02 06:16 | Read:814 | Comments:0 | Tags:APT reports APT Chinese-speaking cybercrime Google Android I

IT threat evolution in Q1 2022. Mobile statistics

IT threat evolution in Q1 2022 IT threat evolution in Q1 2022. Non-mobile statistics IT threat evolution in Q1 2022. Mobile statistics These statistics are based on detection verdicts of Kaspersky products received from users who consented to providing statistical data. Quarterly figures According to Kaspersky Security Network, in Q1 2022: 6,463,414 mobil
Publish At:2022-05-27 06:16 | Read:1714 | Comments:0 | Tags:Malware reports Adware Fraud Google Android Malware Malware

Mobile subscription Trojans and their little tricks

Billing fraud is one of the most common sources of income for cybercriminals. There are currently a number of known mobile Trojans specializing in secretly subscribing users to paid services. They usually pay for legitimate services in a user’s name and scammers take a cut from the money billed. These types of subscription fees tend to be fleeced from
Publish At:2022-05-06 06:09 | Read:1108 | Comments:0 | Tags:Malware descriptions Google Android Malware Malware Descript

Financial cyberthreats in 2021

The year 2021 was eventful in terms of digital threats for organizations and individuals, and financial institutions were no exception. Throughout the past year, we have seen cybercriminals continue to actively target our users with tools and techniques that emerged due to the pandemic. Imperfections in the transition to remote/hybrid work continue to pose a
Publish At:2022-02-23 07:21 | Read:2045 | Comments:0 | Tags:Publications Amazon Cryptocurrencies eBay Emotet Financial m

Mobile malware evolution 2021

These statistics are based on detection verdicts of Kaspersky products received from users who consented to providing statistical data. Figures of the year In 2021, Kaspersky mobile products and technologies detected: 3,464,756 malicious installation packages 97,661 new mobile banking Trojans 17,372 new mobile ransomware Trojans Trends of the year In 2021,
Publish At:2022-02-21 11:16 | Read:2017 | Comments:0 | Tags:Malware reports Adware Apple iOS Data theft Google Android M

Roaming Mantis reaches Europe

Roaming Mantis is a malicious campaign that targets Android devices and spreads mobile malware via smishing. We have been tracking Roaming Mantis since 2018, and published five blog posts about this campaign: Roaming Mantis uses DNS hijacking to infect Android smartphones Roaming Mantis dabbles in mining and phishing multilingually Roaming Mantis, part III
Publish At:2022-02-07 10:03 | Read:878 | Comments:0 | Tags:Malware descriptions Google Android Malware Descriptions Mal

ScarCruft surveilling North Korean defectors and human rights activists

The ScarCruft group (also known as APT37 or Temp.Reaper) is a nation-state sponsored APT actor we first reported in 2016. ScarCruft is known to target North Korean defectors, journalists who cover North Korea-related news and government organizations related to the Korean Peninsula, between others. Recently, we were approached by a news organization with a r
Publish At:2021-11-29 07:18 | Read:2811 | Comments:0 | Tags:APT reports APT Cybercrime Google Android Malware Descriptio

IT threat evolution in Q3 2021. Mobile statistics

IT threat evolution Q3 2021 IT threat evolution in Q3 2021. PC statistics IT threat evolution in Q3 2021. Mobile statistics These statistics are based on detection verdicts of Kaspersky products received from users who consented to provide statistical data. Quarterly figures According to Kaspersky Security Network, in Q3 2021: 9,599,519 malware, adware an
Publish At:2021-11-26 10:01 | Read:4125 | Comments:0 | Tags:Malware reports Adware Google Android Malware Descriptions M

Cyberthreats to financial organizations in 2022

First of all, we are going to analyze the forecasts we made at the end of 2020 and see how accurate they were. Then we will go through the key events of 2021 relating to attacks on financial organizations. Finally, we will make some forecasts about financial attacks in 2022. Analysis of forecasts for 2021 The COVID-19 pandemic is likely to cause a massive w
Publish At:2021-11-23 06:05 | Read:3848 | Comments:0 | Tags:Kaspersky Security Bulletin ATM Bitcoin Brazil Cryptocurrenc

Triada Trojan in WhatsApp MOD

WhatsApp users sometimes feel the official app is lacking a useful feature of one sort or another, be it animated themes, self-destructing messages which automatically delete themselves, the option of hiding certain conversations from the main list, automatic translation of messages, or the option of viewing messages that have been deleted by the sender. Thi
Publish At:2021-08-24 08:05 | Read:44 | Comments:0 | Tags:Incidents Malware descriptions Google Android Instant Messen

Gaming-related cyberthreats in 2020 and 2021

The video game industry is soaring, not in the least thanks to the lockdowns, which forced people to look for new ways to entertain themselves and socialize. Even with things going back to normal, gaming is expected to have a very bright future. Newzoo estimates the industry to gross 175.8 billion USD in 2021, which is slightly less than the total revenue in
Publish At:2021-08-23 08:29 | Read:2567 | Comments:0 | Tags:Research Adware Fraud Gaming malware Google Android Malware

IT threat evolution in Q2 2021. Mobile statistics

These statistics are based on detection verdicts of Kaspersky products received from users who consented to providing statistical data. Quarterly figures In Q2 2021, according to data from Kaspersky Security Network: 14,465,672 malware, adware and riskware attacks were prevented. The largest share of all detected threats accrued to RiskTool programs — 38.48
Publish At:2021-08-12 08:40 | Read:6113 | Comments:0 | Tags:Malware reports Adware Google Android Malware Descriptions M

IT threat evolution Q2 2021

Targeted attacks The leap of a Cycldek-related threat actor It is quite common for Chinese-speaking threat actors to share tools and methodologies: one such example is the infamous “DLL side-loading triad”: a legitimate executable, a malicious DLL to be side-loaded by it and an encoded payload, generally dropped from a self-extracting archive. Th
Publish At:2021-08-12 08:40 | Read:8675 | Comments:0 | Tags:Malware reports Apple MacOS APT Browser Cybercrime Google An

Remote dating: How do the apps safeguard our data?

The pandemic and the restrictions that came with it have led to an increase in the popularity of dating apps. For example, the total number of swipes on Tinder increased by 11% last year, with the daily number of swipes surpassing the 3 billion mark for the first time as early as March 2020. This is hardly surprising when you consider that many places where
Publish At:2021-06-29 07:13 | Read:1976 | Comments:0 | Tags:Research Data Protection Doxing Google Android HTTPS Mobile

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud