Archive: June 2014

Security Digest: June 28th

by Stefanie Hoffman | June 28, 2014 | Category: Industry Trends & News

Lite Zeus - A New Zeus Variant

by Kan Chen | June 26, 2014 | Category: Security Research

Introduction The Zeus malware, a.k.a. Zbot, is a bot that is capable of stealing private and sensitive information including personal passwords and banking information from infected hosts. Its command-and-control (C&C) server can also control th...

Mobile Ransomware : Status Quo

by Ruchna Nigam | June 25, 2014 | Category: Security Research

Ransomware is a type of malware that restricts usage of the device it infects, demanding a ransom from the end-user in order to regain control over the device. Now, the malware could actually damage/encrypt the system and the files on it or it could...

JackPOS - Another Credit Card Stealer

by Hong Kei Chan | June 24, 2014 | Category: Security Research

In a previous blog post on Dexter, we briefly mentioned a new strain of point-of sale (PoS) malware that has compromised over 4,500 credit cards in the United States and Canada. This new strain of malware, dubbed JackPOS, was detected early this year...

Security and The Connected Home

by Michael Perna | June 23, 2014 | Category: Industry Trends & News

"The battle for the Internet of Things has just begun. According to industry research firm IDC, the IoT market is expected to hit $7.1 trillion by 2020," said John Maddison, vice president of marketing at Fortinet. "The ultimate winners of the IoT co...

Security Digest: June 21st

by Michael Perna | June 21, 2014 | Category: Industry Trends & News

Dyreza - The Banking Trojan is Back

by Raul Alvarez | June 20, 2014 | Category: Security Research

Researchers recently discovered a new banking trojan that, like the recently fallen Zeus botnet, is also capable of bypassing the Secure Sockets Layer (SSL). Some speculation even suggests that this baddy is filling the empty shoes that Zeus has left...

Darkness Still Lurks

by He Xu | June 19, 2014 | Category: Security Research

Darkness, a.k.a. Optima, is a bot that majors in performing distributed denial-of-service (DDoS) attacks. This botnet is an old one that has been in the Russian cybercrime underground market for a long time. Since 2013, there has been no new update a...

2014 FIFA World Cup: Top Four Online Scams

by Guillaume Lovet | June 18, 2014 | Category: Industry Trends & News

The games have began and we aren't just talking about football. Unsolicited emails: Beware of spam emails that say you're the lucky winner of a lottery for two free tickets to the World Cup, or promises to give you free access to Websites that let...

Long Live Macro Threats!

by Ruhai Zhang | June 17, 2014 | Category: Security Research

Whenever we refer to macro threats, we are reminded of those malicious macros in the old days which infect Microsoft Office documents. Contrary to popular belief, macro threats haven't completely disappeared. Even with many new security features add...

Advanced Exploit Techniques Attacking the IE Script Engine

by Zhenhua 'Eric' Liu | June 16, 2014 | Category: Security Research

Exploit developers should be very excited recently; lots of big bombs have been dropped to the community. In February, Yang Yu was awarded the Microsoft mitigation bypass bounty, the top prize in Microsoft Bounty Programs. He talked about parts of...

Security Digest: June 14th

by Michael Perna | June 14, 2014 | Category: Industry Trends & News

Anti-Spoofing and ISPs

by Hemant Jain | June 12, 2014 | Category: Industry Trends & News

It's no secret that most DNS reflection attacks flooding the Internet today are caused by spoofing the source address. SYN floods, for example, are spoofed TCP floods, in which the source of the IP packets appears to be different than their actual or...