Author: tetiana.vashchenko@data443.com

Q3 Threat Report Highlights: Apple User Phishing Up 246%, Celebrity and Corporate Hacks, Cybercriminals Exploit Tragedy, and Spam and Malware Continue Unabated.

From celebrity hacking to major corporate data breaches, the third quarter of 2014 demonstrated the lengths cybercriminals will go in order to obtain sensitive and private information. In early September, the world learned of a major breach to celebrity Apple iCloud accounts, likely achieved either through highly targeted phishing or

UPDATE: CYREN Continues to Analyze Significant Malware Attack

UPDATE: CYREN Continues to Analyze Significant Malware Attack For the last 24 hours, CYREN’s Virus Outbreak Detection (VOD) has been monitoring a significant malware attack, with over 80% of all malware passing through the CYREN VOD system containing this Trojan virus with obfuscated Visual Basic macro code. As we delve

Cyren First to Detect Significant Malware Attack

Over the course of this morning (Tuesday 11/4), CYREN has detected a significant malware attack; 80% of all the malware that passed through CYREN’s Virus Outbreak Detection engines contained this Trojan virus, distributed via email with an attached MSWord document. The .doc file contains obfuscated Visual Basic macro code, making

Angry Birds Malware: Obey or Be Hacked

Ransomware has become one of the most notorious forms of malware, as it continually targets end-users, governments, and business organizations. For this reason, it has become very profitable for cybercriminals, who make revenues of millions of dollars. This is now a very serious threat to organizations with financial loss of

Weaponized by SandWorm

Last week it was announced that a Russian cyber-espionage group called “SandWorm” (named because their code includes references from Frank Herbert’s Dune series) had launched a targeted attack campaign, against NATO, the European Union, Ukrainian government organizations, a United States academic organization, European telecommunication firms and Polish energy sector companies.

Malicious use of freely available password recovery tools

I recently came across a piece of malware that is being distributed as an email attachment, posing as a PDF document with a fake file name and icon. It seems like a usual executable malware or botnet client being spammed that does its thing when executed, but after looking into

Web Security in Asia Pacific

A recent World Economic Forum report notes that major technology trends, including massive analytics, cloud computing, and big data, could create between $9.6 trillion and $21.6 trillion (US dollars) in value for the global economy. However, delays in adopting cybersecurity capabilities could result in a $3 trillion loss in economic

Home Depot Breach Results in First Phishing Scam

It didn’t take long for scammers to catch a ride on the Home-Depot-data-breach wave. Last week, CYREN caught and blocked emails claiming to be from American Express, containing the “subject header” “American Express – Security concern on Data breach at Home Depot.”  The email takes an insidiously effective approach, reminding

ShellShock’s Payload Leads to Malware

Shellshock exploded on the scene last week, making headlines in major newspapers and security blogs. Shellshock is a security hole in the Unix/Linux “Bash” Shell. Bash is a command processor that typically runs in a text window, allowing the user to type commands which cause actions. For the non-Linux/UNIX users

A Little Phishing Story

You receive an email (purportedly from Amazon.de) informing you that to protect your identity they would like to give you a new Amazon email address. Amazon.de assures you that their system is fraud-proof, as they use advanced filtering techniques to prevent unwanted emails. Further, they remind you that if you