Phishing Biggest Threat to Google Account Security

Phishing remains the biggest account takeover threat to Google users, surpassing keyloggers and credential leaks. Source: Threadpost

New IcedID Trojan Targets US Banks

A new banking Trojan dubbed IcedID is is being distributed by a seasoned cybergang or hacker targeting U.S. financial institutions. Source: Threadpost

AutoIt Scripting Used By Overlay Malware to Bypass AV Detection

IBM’s X-Force Research team reports hackers attacking Brazilian banks are using the Windows scripting tool called AutoIt to reduces the likelihood of antivirus software detection. Source: Threadpost

Threatpost News Wrap Podcast for Nov. 10

Threatpost editors Mike Mimoso and Tom Spring discuss the week's information security news. Source: Threadpost

IT threat evolution Q3 2017. Statistics

Q3 figures According to KSN data, Kaspersky Lab solutions detected and repelled 277,646,376 malicious attacks from online resources located in 185 countries all over the world. 72,012,219 unique URLs were recognized as malicious...

IT threat evolution Q3 2017

Targeted attacks and malware campaigns enter the dragon In July, we reported on the recent activities of a targeted attack group called ‘Spring Dragon’ (also known as LotusBlossom), whose activities data back to...

Eavesdropper Vulnerability Exposes Mobile Call, Text Data

Developers using the Twilio platform to build enterprise mobile communications apps have put call and text data at risk for exposure. Source: Threadpost

Microsoft Provides Guidance on Mitigating DDE Attacks

Microsoft published guidance for Windows admins on how to safely disable Dynamic Data Exchange (DDE) fields in Office that are being used to spread malware in email-based attacks. Source: Threadpost

IoT is Insecure, Get Over It! Say Researchers

Security experts Charlie Miller and Chris Valasek, contemplate the larger universe of the Internet of things and security. Source: Threadpost

Hundreds of Millions in Digital Currency Remains Frozen

Between $150 million and $300 million in digital currency called ether remains inaccessible today after a user said he “accidentally” triggered a vulnerability that froze the funds in the popular Parity...
- Advertisement -


Facebook malware – the missing piece

 Download the full report (PDF) In our last blogpost, Facebook malware: tag me if you can, we revealed a phishing campaign led by Turkish-speaking threat...