Security Alerts & News
by Tymoteusz A. Góral

History
#1493 Malware evades detection with novel technique
Researchers have found a new strain of document-based macro malware that evades discovery by lying dormant when it detects a security researcher’s test environment.

The malware, according to researcher Caleb Fenton with security firm SentinelOne, evades detection simply by counting the number of documents – or the lack thereof – that reside on a PC and not executing if a certain number are not present.

Fenton, who discovered the malware after several failed attempts to trigger the sample into acting maliciously, said the typical lack of documents in a virtual machine and sandboxed test environment make it easy, in this case, for malware authors to fly under the radar.
Read more
#1502 Cisco warns of command injection flaw in Cloud platform
#1501 Don’t plug it in! Scammers post infected USB sticks through letterboxes
#1500 A bite of Python
#1499 More than 840,000 Cisco devices are vulnerable to NSA-related exploit
#1498 Bug that hit Firefox and Tor browsers was hard to spot—now we know why
#1497 SWIFT confirms banks still being targeted, announces mitigation tool
#1496 IoT devices being increasingly used for DDoS attacks
#1495 Future attack scenarios against ATM authentication systems
#1494 Massive web attack hits security blogger
#1493 Malware evades detection with novel technique
#1492 Yahoo is expected to confirm a massive data breach, impacting hundreds of millions of users
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12