Security Alerts & News
by Tymoteusz A. Góral

History
#711 Petya: the two-in-one trojan
Infecting the Master Boot Record (MBR) and encrypting files is nothing new in the world of malicious programs. Back in 1994, the virus OneHalf emerged that infected MBRs and encrypted the disk contents. However, that virus did not extort money. In 2011, MBR blocker Trojans began spreading (Trojan-Ransom.Win32.Mbro) that infected the MBR and prevented the operating system from loading further. The victim was prompted to pay a ransom to get rid of the problem. It was easy to treat a system infected by these blocker Trojans because, apart from the MBR, they usually didn’t encrypt any data on the disk.

Today, we have encountered a new threat that’s a blast from the past. The Petya Trojan (detected by Kaspersky Lab products as Trojan-Ransom.Win32.Petr) infects the MBR preventing normal system loading, and encrypts the Master File Table (MFT), an important part of the NT file system (NTFS), thus preventing normal access to files on the hard drive.
Read more
#713 Qualcomm software flaw exposes Android user data
#712 Diary of a ransomware victim
#711 Petya: the two-in-one trojan
#710 Kaspersky: IT threat evolution in Q1 2016 report (PDF)
#709 Malware may abuse Android’s accessibility service to bypass security enhancements
#708 IBM just made a powerful research tool available to everyone for free
#707 Big data breaches found at major email services - expert
#706 Public exploits available for ImageMagick vulnerabilities
#705 Identity thieves used leaked PII to steal ADP payroll Info
#704 Apple updates Xcode’s Git implementation
#703 Cisco patches critical TelePresence vulnerability
#702 Microsoft unveils new effort to make its developer, IT documentation great again
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12