Cybersecurity researchers have discovered an entirely new kind of Linux malware dubbed "CDRThief" that targets voice over IP (VoIP) softswitches in an attempt to steal phone call metadata."The primary goal of the malware is to exfiltrate various private data from a compromised softswitch, including call detail records (CDR)," ESET researchers said in a Thursday analysis."To … [Read more...] about New Linux Malware Steals Call Details from VoIP Softswitch Systems
Malware
Iranian Hackers Pose as Journalists to Trick Victims Into Installing Malware
An Iranian cyberespionage group known for targeting government, defense technology, military, and diplomacy sectors is now impersonating journalists to approach targets via LinkedIn and WhatsApp and infect their devices with malware.Detailing the new tactics of the "Charming Kitten" APT group, Israeli firm Clearsky said, "starting July 2020, we have identified a new TTP of the … [Read more...] about Iranian Hackers Pose as Journalists to Trick Victims Into Installing Malware
Russian Arrested After Offering $1 Million to U.S. Company Employee for Planting Malware
Hackers always find a way in, even if there's no software vulnerability to exploit.The FBI has arrested a Russian national who recently traveled to the United States and offered $1 million in bribe to an employee of a targeted company for his help in installing malware into the company's computer network manually.Egor Igorevich Kriuchkov, 27-year-old, entered the United States … [Read more...] about Russian Arrested After Offering $1 Million to U.S. Company Employee for Planting Malware
A Google Drive ‘Feature’ Could Let Attackers Trick You Into Installing Malware
An unpatched security weakness in Google Drive could be exploited by malware attackers to distribute malicious files disguised as legitimate documents or images, enabling bad actors to perform spear-phishing attacks comparatively with a high success rate.The latest security issue—of which Google is aware but, unfortunately, left unpatched—resides in the "manage versions" … [Read more...] about A Google Drive ‘Feature’ Could Let Attackers Trick You Into Installing Malware
A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide
Cybersecurity researchers today took the wraps off a sophisticated, multi-functional peer-to-peer (P2P) botnet written in Golang that has been actively targeting SSH servers since January 2020.Called "FritzFrog," the modular, multi-threaded and file-less botnet has breached more than 500 servers to date, infecting well-known universities in the US and Europe, and a railway … [Read more...] about A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide
QSnatch Data-Stealing Malware Infected Over 62,000 QNAP NAS Devices
Cybersecurity agencies in the US and UK yesterday issued a joint advisory about a massive ongoing malware threat infecting Taiwanese company QNAP's network-attached storage (NAS) appliances.Called QSnatch (or Derek), the data-stealing malware is said to have compromised 62,000 devices since reports emerged last October, with a high degree of infection in Western Europe and … [Read more...] about QSnatch Data-Stealing Malware Infected Over 62,000 QNAP NAS Devices
North Korean Hackers Spotted Using New Multi-Platform Malware Framework
Lazarus Group, the notorious hacking group with ties to the North Korean regime, has unleashed a new multi-platform malware framework with an aim to infiltrate corporate entities around the world, steal customer databases, and distribute ransomware.Capable of targeting Windows, Linux, and macOS operating systems, the MATA malware framework — so-called because of the authors' … [Read more...] about North Korean Hackers Spotted Using New Multi-Platform Malware Framework
New Android Malware Now Steals Passwords For Non-Banking Apps Too
Cybersecurity researchers today uncovered a new strain of banking malware that targets not only banking apps but also steals data and credentials from social networking, dating, and cryptocurrency apps—a total of 337 non-financial Android applications on its target list.Dubbed "BlackRock" by ThreatFabric researchers, which discovered the trojan in May, its source code is … [Read more...] about New Android Malware Now Steals Passwords For Non-Banking Apps Too
Joker Malware Apps Once Again Bypass Google’s Security to Spread via Play Store
Cybersecurity researchers took the wraps off yet another instance of Android malware hidden under the guise of legitimate applications to stealthily subscribe unsuspecting users for premium services without their knowledge.In a report published by Check Point research today, the malware — infamously called Joker (or Bread) — has found another trick to bypass Google's Play Store … [Read more...] about Joker Malware Apps Once Again Bypass Google’s Security to Spread via Play Store
Microsoft Launches Free Linux Forensics and Rootkit Malware Detection Service
Microsoft has announced a new free-to-use initiative aimed at uncovering forensic evidence of sabotage on Linux systems, including rootkits and intrusive malware that may otherwise go undetected.The cloud offering, dubbed Project Freta, is a snapshot-based memory forensic mechanism that aims to provide automated full-system volatile memory inspection of virtual machine (VM) … [Read more...] about Microsoft Launches Free Linux Forensics and Rootkit Malware Detection Service