malware

iPhone app malware attack: details you need to know

iPhone app malware attack: details you need to know

This morning Apple released a statement on a large-scale attack on their iOS App Store. Apple is in the process of cleaning up after the attack, having found a malicious program by the name of XcodeGhost earlier today. This is the first reported case of malware making its way into Apple's App Stores in any sort of large-scale manner. According to cyber security firm Palo Alto Networks, just five malicious software-containing apps had ever been found on the iOS App Store before.

Continue Reading

XcodeGhost malware gets past Apple App Store scrutiny [UPDATE]

XcodeGhost malware gets past Apple App Store scrutiny [UPDATE]

Apple's stringent and sometimes even heavy handed review rules for iOS apps have both been hailed and criticized alike, but its core benefit remains the same, very few malicious apps gets past quality control. However, it's not infallible, as five past iOS malware can attest to. Now a sixth joins that list, but with more far-reaching consequences. Dozens, if not hundreds, of App Store apps, specifically in China, might be infected by the XcodeGhost malware, and this time, the apps are otherwise legitimate ones and their developers unwitting accomplices. All thanks to an unofficial Xcode installer going around the Internet.

Continue Reading

PIN-changing Android ransomware spreading in the US

PIN-changing Android ransomware spreading in the US

Before you get all riled up, this isn't yet another Android vulnerability like Stagefright. This is your run of the mill malware installed through social engineering or carelessness, but one that has far graver ramifications than other ransomware. Discovered by researchers from security company ESET, the Android/Lockerpin.A ransomware goes the extra mile to actually change your device's PIN code in such a way that trying to reset the PIN will lock the user, and ironically the attacker too, from the device completely, with no recourse other than a factory reset.

Continue Reading

Stagefright exploit code now available to the public

Stagefright exploit code now available to the public

If you thought that the Stagefright nightmware was over, or at least on its way out, you might want to think again. More than two months since it went public with the severe Android vulnerability, mobile security outfit Zimperium is now also making public actual working code that exploits this security hole. This while Google, device manufacturers, and carriers are still scrambling to roll out patches to devices, some of which still remain exposed to this outbreak. Now they have more pressure to pick up the pace.

Continue Reading

“KeyRaider” iOS malware has stolen 225,00 Apple accounts

“KeyRaider” iOS malware has stolen 225,00 Apple accounts

It's not everyday that you hear about malware on iOS, so when the news does hit, it hits hard. And while there are mitigating factors that prevent this malware from being spread too far, it's effects could actually affect even innocent iPhone and iPad users. Nicknamed "KeyRaider", this new family of iOS malware has been able to harvest more than 200,000 valid Apple accounts. Their purpose? To be able to install apps from the App Store without paying a dime. Of course at the expense of those whose accounts have been compromised.

Continue Reading

Kaspersky tipped to be sabotaging rival anti-virus software

Kaspersky tipped to be sabotaging rival anti-virus software

Russian security company Kaspersky is one of the most trusted names when it comes to software protection but, while a recent hacking incident may have portrayed it as a victim, it might not actually be that innocent after all. Two former employees, who of course desires to remain anonymous, reveals that Kaspersky has been covertly working to undermine rival anti-virus software by flagging innocent and important system files as malware, causing these other AV programs to delete those files, turning unsuspecting users into collateral damage in their wake.

Continue Reading

Apple’s OS X 10.10.5 update patches DYLD security vulnerability

Apple’s OS X 10.10.5 update patches DYLD security vulnerability

Apple has released an OS X system update for Yosemite users, bringing the version up to 10.10.5. While the update addresses a number of small bugs, its primary focus is fixing the recently discussed DYLD privilege escalation security exploit. The vulnerability has the potential to allow malware to get root access to a Mac, which is why concerns were raised last week that Apple may not be issuing a fix until the release of OS X 10.11 El Capitan. Fortunately the company has followed through on its promise, releasing the patch right away.

Continue Reading

Nexus OTA updates for Stagefright appearing today

Nexus OTA updates for Stagefright appearing today

This morning OTA (over the air) updates for Android devices in Google's Nexus stable have begun to arrive for Stagefright. A vulnerability in the security bits of all Android devices was found earlier this month, a vulnerability in Stagefright that you really should get to know up close and personal. Google took action - as have many major manufacturers of smartphones - and updates are coming starting today.

Continue Reading

Grandma malware warning: smartphone app downloads of death

Grandma malware warning: smartphone app downloads of death

If you're reading this article, chances are you're the person in your family that does all the tech support. Today we've got a bit of a warning for you from the likes of a developer by the name of Rudis Muiznieks. This fellow bared his soul this week in an article all about how he used to work for a company that spammed desktop and mobile computer users with apps and data-harvesting software. It occurred to us that some readers might never have heard of one of this phantom company's methods, and should therefor be informed and warned.

Continue Reading

Apple to fix latest security bug in OS X 10.10.5 update

Apple to fix latest security bug in OS X 10.10.5 update

With this week's news about a pair of malware threatening the security of OS X, it's starting to become a bit concerning that Apple's platform is losing its place as a "virus free" environment. Nonetheless, the company is planning to release a patch for the bug "as soon as possible," reports The Guardian. The patch is said to come in the form of a security update included in a OS X 10.10.5 update.

Continue Reading

Yahoo’s ads spread malware via hackers, vulnerable Flash

Yahoo’s ads spread malware via hackers, vulnerable Flash

Yahoo was recently hit by hackers who used its advertisements to deliver malware to an unspecified number of visitors on several of its own websites, it has been revealed. The malware campaign carried on for a full 7-day week before Yahoo, having been alerted by the researchers who discovered it, took it down. Yahoo says it is investigating the matter, and though it has not revealed how many people were affected, it said through a spokesperson that the initial reports "grossly misrepresented" the scale of the attack.

Continue Reading

These OS X malware are like zombies that refuse to die

These OS X malware are like zombies that refuse to die

Traditionally, PCs, especially those running Windows, are notorious for their security vulnerabilities. That is something that Apple is only too happy to point out, often blowing its own horn when it comes to being immune to your typical viruses. Trying to wake Apple up to reality, a group of hackers will present at Black Hat and Def Con security conferences this week how Macs are just as vulnerable to malware, even the same malware as PCs. And in this case, it might be even be worse, since even reformatting doesn't wipe out the malware.

Continue Reading

Prev 1 2 3 4 5 6 7 8 Next