ESET
3CX Breach Was a Double Supply Chain Compromise
BrianKrebs | | 3CX, A Little Sunshine, ClearSky Security, Diamond Sleet, double supply chain breach, Elastic Security, ESET, ICONICSTEALER, Kaspersky Lab, kim zetter, Latest Warnings, macos, Mandiant, Marc-Etienne M.Leveille, Microsoft, Ne'er-Do-Well News, Peter Kalnai, supply chain, The Coming Storm, Trading Technologies, X_Trader, zero-day, ZINC
We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North ...
The Link Between AWM Proxy & the Glupteba Botnet
BrianKrebs | | A Little Sunshine, alureon, AWM Proxy, Breadcrumbs, Constella Intelligence, dennstr, Dmitry Starovikov, DomainTools, ESET, Glupteba botnet, google, Kaspersky Lab, lycefer, Meris, Ne'er-Do-Well News, Pay Per Install, Riley Kilmer, rootkit, RSOCKS botnet, spur.us, TDL-4, tdss, Web Fraud 2.0
On December 7, 2021, Google announced it had sued two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past ...
2021 Marred by Aggressive APTs; RDP Attacks up 897%
While much of the world tried to regain some semblance of normalcy in 2021 after the onset of the COVID-19 pandemic the year before, cyberattackers were hard at work ushering in the ...
Security Boulevard
Extracting Security Products from SUNBURST DNS Beacons
Erik Hjelmvik | | beacon, C2, Carbon Black, CB28867A08967B43, CrowdStrike Falcon, dns, ESET, f-secure, fireeye, SolarWinds, Solorigate, SUNBURST, SunburstDomainDecoder, Windows Defender
The latest version of our SunburstDomainDecoder (v1.7) can be used to reveal which endpoint protection applications that are installed on trojanized SolarWinds Orion deployments. The security application info is extracted from DNS ...
Remote Work Pushes Brute-Force Attacks Higher
Joan Goodchild | | brute-force attacks, employee remote access, ESET, remote access, Remote Desktop Protocol
The widespread switch to work-from-home arrangements around the globe means employees are working offsite at unprecedented levels. It’s also prompted cybercriminals to find additional targets to exploit. We have heard for months ...
Security Boulevard
How Personality Influences Cybersecurity Behavior
In August 2019, ESET and The Myers-Briggs Company released preliminary findings of a fascinating study on the way personality types can influence cybersecurity behaviors. With just a snippet of the data available, ...
Security Boulevard
Antisocial Android Apps
Lukas Stefanko for ESET: Banking Trojans continue to surface on Google Play The malicious apps have all been removed from the official Android store but not before the apps were installed by ...
Android/iOS detections down, but Fortnite flaw problematic
Android/iOS detections down, but Fortnite flaw linked with Man-in-the-Disk ...
Fortnite and Android: an Epic disagreement
ESET's Lukáš Štefanko argues that by shunning Google Play, Epic Games sets a dangerous precedent ...
Green Card scams & Tech Support scams
David Harley | | diversity visa lottery scams, ESET, lottery scam, MalwareBytes, Scams, support scams
Interesting article comparing green card scams and tech support scams where the fake site looks more authentic than the real thing ...