Security Alerts & News
by Tymoteusz A. Góral

History
#2101 Spam campaign targets financial institutions with fake security software
Last month, Symantec detected a spam campaign mainly targeting financial institutions, which used social engineering to try trick victims into installing “virus detection software” that was in fact an information stealing Trojan (W32.Difobot).

The emails purported to come from HSBC, a banking and financial services company based in London, even displaying an @hsbc.com email address. The messages claimed that the virus detection software was Rapport from Trusteer, a legitimate security program designed to protect online bank accounts from fraud. However, the fake Rapport software is actually malicious and, if installed, does the opposite of what is claimed and steals information from the compromised computer. The malware also uses Windows GodMode in order to hide itself on infected computers.
Read more
#2103 New Instagram credential stealers discovered on Google Play
#2102 New macOS Proton RAT available for sale on Russian hacking forum
#2101 Spam campaign targets financial institutions with fake security software
#2100 Detecting and eliminating Chamois, a fraud botnet on Android
#2099 Google launches invisible reCAPTCHA with no user interaction required
#2098 0day exploits rarely discovered by more than one group, study finds
#2097 Dahua, Hikvision IoT devices under siege
#2096 New Linux malware exploits CGI vulnerability
#2095 How online gamers use malware to cheat
#2094 Preinstalled malware targeting mobile users
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12