Security Alerts & News
by Tymoteusz A. Góral

History
#2244 More than 10,000 Windows computers may be infected by advanced NSA backdoor
Security experts believe that tens of thousands of Windows computers may have been infected by a highly advanced National Security Agency backdoor. The NSA backdoor was included in last week's leak by the mysterious group known as Shadow Brokers.

DoublePulsar, as the NSA implant is code-named, was detected on more than 107,000 computers in one Internet scan. That scan was performed over the past few days by researchers from Binary Edge, a security firm headquartered in Switzerland. Binary Edge has more here. Separate mass scans, one done by Errata Security CEO Rob Graham and another by researchers from Below0day, detected roughly 41,000 and 30,000 infected machines, respectively. To remain stealthy, DoublePulsar doesn't write any files to the computers it infects. This design prevents it from persisting after an infected machine is rebooted. The lack of persistence may be one explanation for the widely differing results.
Read more
#2244 More than 10,000 Windows computers may be infected by advanced NSA backdoor
#2243 Would you like a backdoor with that Linksys router, Sir?
#2242 INTERPOL-led cybercrime operation across ASEAN unites public and private sectors
#2241 Android O will contain special feature to fight off ransomware
#2240 The godfather of ransomware returns: Locky is back and sneakier than ever
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12