Security Alerts & News
by Tymoteusz A. Góral

History
#1883 Post-holiday spam campaign delivers Neutrino bot
During the Christmas season and early into the new year, we noticed a sharp decrease in spam volume, perhaps as online criminals took a break from their malicious activities and popped the champagne to celebrate. It could also have been a time to regroup and plan new strategies for the upcoming year.

In any case, over the weekend we observed a large new campaign purporting to be an email from ‘Microsoft Security Office’ with a link to a full security report (Microsoft.report.doc). This was somewhat unexpected, as typically the malicious Office files are directly attached to the email. Instead, the files are hosted on various servers with a short time to live window.
Read more
#1885 WordPress 4.7.1 fixes CSRF, XSS, PHPMailer vulnerabilities
#1884 Spora ransomware works offline, has the most sophisticated payment site as of yet
#1883 Post-holiday spam campaign delivers Neutrino bot
#1882 A look at EyePyramid, the malware supposedly used in high-profile hacks in Italy
#1881 Adobe Acrobat Reader DC update installs Chrome browser extension
#1880 Hacker steals 900 GB of Cellebrite data
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12