News Clipping


[DNSPIONAGE] – FOCUS ON INTERNAL ACTIONS

Recently, we had an incident response involving the malware DNSPIONAGE. At CERT-OPMD, we thought it would be interesting to share our observations. Mainly, we could observe quietly common actions and tools as described in infography below. HOW DNSPIONAGE INFECTS TARGETS In this blogpost, we will not describe and analyse again...

Read more


Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages...

Read more


Hackers steal $4.2 million from cryptocurrency exchange Bitrue [mashable]

Singaporean cryptocurrency exchange Bitrue has been hacked, with the perps making off with roughly $4.2 million worth of cryptocoins XRP and ADA.  The incident happened at 1 a.m. GMT+8 on June 27, with the hacker exploiting a vulnerability in the company’s “Risk Control team’s 2nd review process to access the...

Read more


New Mac Malware Exploits GateKeeper Bypass Bug that Apple Left Unpatched [thehackernews]

Cybersecurity researchers from Intego are warning about possible active exploitation of an unpatched security vulnerability in Apple’s macOS Gatekeeper security feature details and PoC for which were publicly disclosed late last month. Intego team last week discovered four samples of new macOS malware on VirusTotal that leverage the GateKeeper bypass vulnerability to...

Read more


GandCrab Ransomware Decryption Tool Released [thehackernews]

Cybersecurity researchers have released an updated version of GandCrab ransomware decryption tool that could allow millions of affected users to unlock their encrypted files for free without paying a ransom to the cybercriminals. GandCrab is one of the most prolific families of ransomware to date that has infected over 1.5 million...

Read more


Tyupkin ATM Malware: Take The Money Now Or Never! [source: lastline]

Tyupkin ATM Malware: Take The Money Now Or Never! A Sandbox is a dynamic file analysis system that allows a researcher to analyze the behavior of potentially malicious code in a virtualized environment without damaging a real host system. In some cases, a sandbox has to analyze an attack without...

Read more


Analysis on ATM infector [securelist]

even years ago, in 2009, we saw a completely new type of attack on banks. Instead of infecting the computers of thousands of users worldwide, criminals went directly after the ATM itself – infecting it with malware called Skimer. Seven years later, our Global Research and Analysis Team together with...

Read more


Hacker Disclosed 3 Unpatched Microsoft 0-Day Exploits In Less Than 24hr [thehackernews]

Less than 24 hours after publicly disclosing an unpatched zero-day vulnerability in Windows 10, the anonymous hacker going by online alias “SandboxEscaper” has now dropped new exploits for two more unpatched Microsoft zero-day vulnerabilities. The two new zero-day vulnerabilities affect Microsoft’s Windows Error Reporting service and Internet Explorer 11. Just yesterday,...

Read more


Page 3 of 5312345...102030...Last »