Security Alerts & News
by Tymoteusz A. Góral

#1369 New open source ransomware based on hidden tear and EDA2 may target businesses
In a span of one to two weeks, three new open source ransomware strains have emerged, which are based on Hidden Tear and EDA2. These new ransomware families specifically look for files related to web servers and databases, which could suggest that they are targeting businesses.

Both Hidden Tear and EDA2 are considered as the first open source ransomware created for educational purposes. However, these were quickly abused by cybercriminals. RANSOM_CRYPTEAR.B is one of the many Hidden Tear spinoffs that infect systems when users access a hacked website from Paraguay. Magic ransomware (detected as RANSOM_MEMEKAP.A), based on EDA2, came soon after CRYPTEAR.B’s discovery.

One factor that contributed to the proliferation of this ransomware type is the ease and convenience it offers to cybercriminals—they don’t have to be technically skilled to build their own ransomware from scratch. Before the source codes of Hidden Tear and EDA2 were taken down, these were publicly available and cybercriminals only had to modify the code based on their needs.
Read more
#1370 Experts challenge Skyhigh's patent for cloud-based encryption gateway
#1369 New open source ransomware based on hidden tear and EDA2 may target businesses
#1368 Sony finally enables 2FA for PlayStation Network users
#1367 NSO group’s iPhone zero-days used against a UAE human rights defender
#1366 VMware patches flaws in identity and cloud products
#1365 Keystroke recognition uses WiFi signals to snoop
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12