ESET: Millions of Net Users Possibly Exposed to Malicious Malvertising Campaign

Researchers from ESET have warned that millions of internet users visiting popular news sites over the past few months may have been exposed to a malicious malvertising campaign. The firm says that the cyber-criminals behind the campaign have been, since as least the beginning of October, distributing malicious ads promoting applications calling themselves “Browser Defence” and “Broxu” which redirect users to the Stegano exploit kit. ESET added: “Without requiring any user interaction, the initial script reports information about the victim’s machine to the attacker’s remote server. Based on server-side logic, the target is then served either a clean image or…
18
Jun

84% of Phishing Sites Last for Less Than 24 Hours

Phishers are a nimble bunch: About 84% of phishing sites exist for less than 24 hours, with an average life cycle of under 15 hours. According to data collected by Webroot, phishing attacks have become increasingly sophisticated and carefully crafted in order to obtain sensitive information from specific organizations and people. “Our data shows that a phishing site can last for as little as 15 minutes,” said Hal Lonas, CTO for Webroot. “In years past, these sites could endure for several weeks or months, giving organizations plenty of time to block the method of attack and prevent more victims from…
18
Jun

August: A Spy Trojan for All Seasons

A fresh information-stealing trojan dubbed August is making the rounds, targeting credentials and sensitive documents from highly targeted victims through socially engineered emails with attached malicious documents. According to analysis from Proofpoint, August is the payload in multiple campaigns from TA530—an actor known for targeting customer service and managerial staff at retailers. “These campaigns utilized ‘fileless’ loading of a relatively new malware called August through the use of Word macros and PowerShell,” the researchers said. “We found that many of the lures and subject lines of the emails used references to issues with supposed purchases on the company’s website, and…

Duis viverra nibh a felis condimentum pretium

Duis viverra nibh a felis condimentum pretium. Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Sed eleifend urna eu sapien. Quisque posuere nunc eu massa. Praesent bibendum lorem non leo. Morbi volutpat, urna eu fermentum rutrum, ligula lacus interdum mauris, ac pulvinar libero pede a enim. Etiam commodo malesuada ante. Donec nec ligula. Curabitur mollis semper diam. Duis viverra nibh a felis condimentum pretium. Nullam tristique lacus non purus. Donec vel felis. Etiam et sapien. Pellentesque nec quam a justo tincidunt laoreet. Aenean id enim. Donec lorem arcu, eleifend venenatis, rhoncus mollis, semper at, dui. Praesent velit tellus, adipiscing et,…
Page 1 of 2