Articles about malware

Crown courtroom. Pic: Shutterstock

Brit behind Titanium Stresser DDoS malware sent to chokey

A Hertfordshire man has been jailed for two years after netting nearly £400,000 from the malware he wrote as a 15-year-old student. Adam Mudd, now 20, was sentenced to two years in a young offenders’ institute this afternoon. He had pleaded guilty to two charges under the Computer Misuse Act and one charge of concealing …
Gareth Corfield, 25 Apr 2017
Linux penguin canape... snacks. Photo by SHutterstock

Hackers uncork experimental Linux-targeting malware

Hackers have unleashed a new malware strain that targets Linux-based systems. The Linux/Shishiga malware uses four different protocols (SSH, Telnet, HTTP and BitTorrent) and Lua scripts for modularity, according to an analysis of the nasty by security researchers at ESET. Shishiga relies on the use of weak, default …
John Leyden, 25 Apr 2017
panic

Webroot antivirus goes bananas, starts trashing Windows system files

Webroot's security tools went berserk today, mislabeling key Microsoft Windows system files as malicious and temporarily removing them – knackering countless PCs in the process. Not only were people's individual copies of the antivirus suite going haywire, but also business editions and installations run by managed service …
Iain Thomson, 25 Apr 2017
hotel

If you've stayed at a Holiday Inn you may have lost more than a good night's sleep (like maybe your bank card)

In February, Intercontinental Hotels Group alerted customers that some of its US locations had been infected with credit-card-stealing malware. Now it has admitted the cyber-outbreak is much worse than first thought. IHG, which owns brands like Holiday Inn and Crown Plaza, has warned that around 1,200 of its hotels across the …
Iain Thomson, 19 Apr 2017
phishing

UK.gov survey shines light on cybersecurity threats to businesses

Phishing and ransomware remain the most pressing security threats for UK business, according to a government-backed survey out Wednesday. The survey, commissioned by the Department for Culture, Media and Sport, found that the most common types of breaches are related to staff receiving fraudulent emails (in 72 per cent of …
John Leyden, 19 Apr 2017
Smart oven

Fixing your oven can cook your computer

Updated If your Hotpoint cooker or washer's on the blink, don't arrange a repair by visiting the manufacturer's website: the appliance vendor has been inadvertently foisting nastyware onto visitors. As spotted by Netcraft, fake Java update dialogs started appearing on Hotpoint's UK and Republic of Ireland sites this week. If you click …
Simon Sharwood, 19 Apr 2017

Profit with just one infection! Crook sells ransomware for $175

Cybercrooks have begun retailing a new easy-to-use ransomware strain that promises profit with only one successful infection. Karmen is being sold on Dark Web forums from Russian-speaking cyber-criminal DevBitox for $175. The new ransomware-as-a-service variant offers a graphical dashboard, allowing purchasers to keep a …
John Leyden, 18 Apr 2017

Back to the Future 2: Gasp! America's trade watchdog discovers the risks of 'free' movies

You may want to sit down for this. Did you know that movie files downloaded for free from the internet may contain malware? You did? Well it was news to US trade watchdog the FTC's assistant director Will Maxson, who published a whole blog post about this shocking revelation on Thursday. Will was also shocked to discover it …
Kieren McCarthy, 13 Apr 2017
Woman stares at laptop screen, shocked. Pic by shutterstock

Cerber surpasses Locky to become dominant ransomware menace

Cerber eclipsed Locky as the most common ransomware pathogen doing the rounds in the first three months of 2017. Cerber's control of the cybercrime market rose from 70 per cent market share in January to 87 per cent in March, according to the latest cybercrime tactics report by Malwarebytes Lab. The success of Cerber is down …
John Leyden, 13 Apr 2017

Oh my Microsoft Word: Dridex hackers exploit unpatched flaw

Cybercrooks are actively exploiting an unpatched Microsoft Word vulnerability to distribute the Dridex banking trojan, claim researchers. Booby-trapped emails designed to spread the cyber-pathogen have been sent to hundreds of thousands of recipients across numerous organisations, according to email security firm Proofpoint. …
John Leyden, 11 Apr 2017
security

Solaris admins! Look out – working remote root exploit leaked in Shadow Brokers dump

Updated Now that the sulky Shadow Brokers gang has leaked its archive of stolen NSA exploits, security experts are trawling Uncle Sam's classified attack code – and the results aren't good for anyone using Oracle's Solaris. Matthew Hickey, cofounder of British security shop Hacker House, is among those going through the dumped files, …
Iain Thomson, 11 Apr 2017
malware

Forget Mirai – Brickerbot malware will kill your crap IoT devices

A new form of attack code has come to town and it uses techniques similar to Mirai to permanently scramble Internet of Things devices. On March 20 researchers at security shop Radware spotted the malware, dubbed Brickerbot, cropping up in honeypots it sets up across the web to lure interesting samples. In the space of four …
Iain Thomson, 8 Apr 2017
Vulture

'Amnesia' IoT botnet feasts on year-old unpatched vulnerability

Hackers have brewed up a new variant of the IoT/Linux botnet "Tsunami" that exploits a year-old but as yet unresolved vulnerability. The Amnesia botnet targets an unpatched remote code execution vulnerability publicly disclosed more than a year ago in DVR (digital video recorder) devices made by TVT Digital and branded by over …
John Leyden, 7 Apr 2017
Sad man stares glumly over boxed contents of desk. Image via shutterstock (Baranq)

Everything's fine, says Cylance, as 'one in five' workers given the boot

+Comment Prominent next-gen antivirus vendor Cylance has confirmed a wide-ranging restructure involving job cuts. In response to queries based on an anonymous tip to El Reg on Tuesday that as many as one in five workers had been shown the door, Cylance confirmed it was restructuring its business without commenting on the job cut …
John Leyden, 5 Apr 2017
Ransomware, photo via Shutterstock

Point-and-pwn tool for posers dumbs down ransomware spreading

Spreading ransomware has become a point-and-click exercise following the release of a file-scrambling malware interface for unskilled wannabe cybercrooks. The malware generator enables attackers to customise the wares using a user-friendly interface. Strains of the resulting WYSIWYE (What You See Is What You Encrypt) nasties …
John Leyden, 31 Mar 2017
Road Closed sign

Web-app devs note: Google wants to banish JavaScript dialogues

Annoying sites that open hard-to-eradicate “Do you want to leave this site? Are you sure?” dialogues are in Chrome's cross-hairs: the Chrome team has decided JavaScript dialogues offer too much scope for abuse, and is laying out a roadmap to get rid of them. The JavaScript dialogue is also a favourite of “Your Computer May Be …

Recruiters considered really harmful: Devs on GitHub hit with booby-trapped fake job emails

Recruiters are known to be a bit of a pain in the ASCII in the tech world – but how about these ones: bogus headhunters attempting to infect GitHub-using software developers. The miscreants have harvested email addresses for active GitHub accounts, and spammed the inboxes with booby-trapped job offers. These malicious messages …
handcuffs

Russian mastermind of $500m bank-raiding Citadel coughs to crimes

The Russian programmer who built the bank-acount-raiding Citadel Trojan has admitted his crimes. Mark Vartanyan, who operated under the handle "Kolypto", was arrested in Norway last year, and extradited to America in December. The 29-year-old was charged with one count of computer fraud. On Monday, he pleaded guilty [PDF] to a …
Iain Thomson, 22 Mar 2017

Create a news alert about malware, or find more stories about malware.

Biting the hand that feeds IT © 1998–2017