Search Results for “Tara Seals”


May 22, 2020
Tara Seals / Threatpost

Tara Seals / Threatpost  
NetWalker Ransomware Used in Toll Groups Attacks Now Available as Ransomware-as-a-Service

The NetWalker ransomware, which is behind one of the recent Toll Group attacks, has transitioned to a ransomware-as-a-service (RaaS) model, and its operators are placing a heavy emphasis on targeting and attracting technically advanced affiliates, according to researchers at Advanced Intelligence. The new business model allows NetWalker to collaborate with other seasoned cybercriminals who already have access to large networks and have the ability to disseminate ransomware, according to the researchers. A Russian-speaking forum told the researchers that interested RaaS candidates must apply to the affiliate program, and are subject to a review by NetWalker group members.

April 8, 2020
Tara Seals / Threatpost

Tara Seals / Threatpost  
Android xHelper Malware Uses Russian Nesting Doll-Type Architecture to Make Itself ‘Undeletable’ on Devices

The “undeletable” Android xHelper malware, which ultimately leads to the installation of the Triada trojan, uses a Russian nesting doll-type architecture to worm its way into the heart of Android devices, according to researchers at Kaspersky Lab. The infection chain starts by convincing a victim to download a rogue trojanized app such as a popular cleaner or speed-up utility, which then decrypts a payload in the background, kicking off a series of events that delivers data to a remote server that starts unpacking a dropper-within-a-dropper-within-a-dropper. The final downloader installs the Triada trojan, which in turn installs more malicious programs. Infected users can use recovery mode to try to extract the libc.so file from the original firmware and replace the infected one with it, although Kaspersky Lab researchers say it’s simpler and more reliable to reflash the phone completely.

April 14, 2020
Tara Seals / Threatpost

Tara Seals / Threatpost  
VMware Patches Severe Critical Information-Disclosure Bug In its Directory Service

A critical information-disclosure bug in VMware’s Directory Service (vmdir) could expose the contents of entire corporate virtual infrastructures if exploited by cyber attackers. The critical flaw (CVE-2020-3952), which rates ten out of ten on the severity scale, was disclosed and patched last week by VMware. There are no workarounds, but administrators are encouraged to apply the patches as soon as possible.

March 2, 2019
Threatpost

Threatpost   
Podcast: RSA Conference 2019 Preview

Threatpost editors Lindsey O’Donnell, Tom Spring and Tara Seals break down the biggest news, stories and trends – from artificial intelligence and government security to privacy and the Internet of Things – that they expect to hear about at RSA 2019 this year.

February 3, 2019
Threatpost

Threatpost  
News Wrap Podcast For Feb. 1

Threatpost editors Lindsey O’Donnell and Tara Seals discuss Facebook and Google finding themselves in hot water over distributing data-sucking apps on iOS devices, a new data dump of 2.2 billion compromised credentials discovered on the Dark Web known as“Collections #2-5″ and more.

January 27, 2019
Threatpost

Threatpost   
News Wrap Podcast For Jan. 25

Tom Spring, Tara Seals and Lindsey O’Donnell discuss a rare “emergency directive” issued by the Department of Homeland Security on Tuesday, which warned that multiple government domains have been targeted by DNS hijacking attacks. Google also made headlines this week when it was slapped with a $57 million (€50 million) fine for violations of the General Data Protection Regulation (GDPR)