Earlier this week, sources speaking to The Wall Street Journal tipped that raids were taking place on the hacking collective surrounding Blackshades, a remote access tool that made spying on others a simple matter. Today the FBI confirmed the raids, and detailed a bit about what went down.
Certain iPhone and iPad models that are jailbroken are actively at risk of malware that "listens" to outgoing SSL connections and attempts to pilfer the user's Apple ID and password. The information was detailed by researchers after being discovered by a Reddit user, who asked for advice about it on Reddit's Jailbreak board.
Google is updating Android to continuously check phones and tablets for rogue apps, picking out those with malware behavior even if they've managed to squeeze through the initial verification. The new feature, which builds on Android's existing "Verify apps" system that sifts through software at the point of installation to flag up any concerns, will add real-time and ongoing checks.
Malware that aims at infecting computers and turning them into bitcoin miners isn’t something new. However, a new piece of malware has surfaced that aims to turn hardware you might not think of getting infected into bitcoin mining drones. A new report has found a malware that infects DVRs. One of the binaries in the malware is D72BNr and the bitcoin mining portion of the malware is mzkk8g.
Yesterday The Intercept posted a massive write up detailing an NSA project called TURBINE, which is said to involve the mass infection of millions of computers globally, as well the use of websites that impersonate legitimate services, such as Facebook. The NSA has fired back, denying the claims.
The Pony botnet has been identified as a digital wallet thief, done so by Trustwave's SpiderLabs, which detailed its findings in a recent blog post. The botnet is known to steal credentials, but to a lesser degree it is also nabbing digital coins from the wallets of infected users. The theft takes place across multiple currency types: Bitcoin, Litecoin, and 28 more.
The SANS Institute's Internet Storm Center discovered a worm that affects older Linksys wireless routers after receiving multiple complaints from owners. The ISC, as it is called, published a write up about what it had discovered about the worm called TheMoon, as well as possible models at risk. Linksys has followed up the notification with a confirmation of the issue.
Flappy Bird's creator may have yanked the game out of concern for players' addiction to the hit title, but fake versions may do damage to their wallets instead, with trojan malware flooding the Google Play store. Beleaguered developer Dong Nguyen opted to pull the official downloads of Flappy Bird because the thought of players unable to put down the simple game was giving him sleepless nights. However, its absence opened the gates for clones to take its place, some of which have been found to make unexpected premium charges to monthly smartphone bills.
What could be one of the most advanced cyber-espionage and malware systems has been identified, with Kaspersky Lab discovering a wide-reaching hacking scheme that has affected more than 380 different victims across 31 different countries. Dubbed "The Mask" from the Spanish slang "Careto" - meaning "ugly face" or "mask" - found in the malware code, the hackers have put together what Kaspersky describes as an "extremely sophisticated" set of tools including versions for Windows, Mac, Linux, and potentially Android and iOS. In addition to the broad range of potential victims, the amount of data that can be extracted from an infected machine is vast.
Emisoft has come forward with details on a newly discovered form of ransomware. This one is dubbed "Linkup" and while it will hold your computer hostage, it doesn't lock your computer or encrypt all your files like we have seen in the past. Instead, this version of Linkup blocks Internet access and also turns your system into a bitcoin mining zombie.