Security Alerts & News
by Tymoteusz A. Góral

History
#1064 Espionage toolkit targeting central and eastern Europe uncovered
Over the course of the last year, ESET has detected and analyzed several instances of malware used for targeted espionage – dubbed SBDH toolkit. Using powerful filters, various methods of communication with its operators and an interesting persistence technique, it aims to exfiltrate selected files from governmental and public institutions, which are mostly focused on economic growth and cooperation in Central and Eastern Europe. ESET’s SBDH findings were presented during the Copenhagen Cybercrime Conference 2016 by researchers Tomáš Gardoň and Robert Lipovský.

This toolkit – actually only its initial part – was spreading as an executable with a double extension attached to a phishing email (counting on Windows’ default behavior of hiding an extension). To further increase its chances of being run by the receiver, it uses legitimate looking icons of several Microsoft applications or a Word document.
Read more
#1066 Lenovo scrambling to get a fix for BIOS vulnerability
#1065 A Chinese ad firm is using malware to get more clicks
#1064 Espionage toolkit targeting central and eastern Europe uncovered
#1063 Google Project Zero: A year of Windows kernel font fuzzing #2: the techniques
#1062 How China took center stage in Bitcoin’s civil war
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12