Category: cyren

French Ministry “Survey” Delivers Macro Backdoor

Thinking of moving to France? Soyez très prudent! That form you’re busy filling out may be uploading and downloading files, exfiltrating data, doing reconnaisance of your network — or worse. A criminal malware group behind a sophisticated Excel macro backdoor, which has been targeting Middle Eastern financial institutions since 2015,

New Phishing Wave Targets Online Banking and Digital Payment Customers

Cyren researchers are seeing a new phishing technique targeting online banking users from Wells Fargo, Chase and Capital One, along with digital payment customers from Paypal and Venmo, among others. This new wave of phishing attacks builds on previously known techniques. Phishing email attachments, for example, rely relying on email

New Cerber Ransomware-as-a-Service Causing Fresh Outbreaks

Cerber ransomware first appeared in February 2016, and according to initial reports (by SenseCy) it was offered in the form of Ransomware-as-a-Service (RaaS), where affiliates can join in order to distribute the ransomware, while the Cerber developers earn a commission from each ransom payment. Cyren is now detecting fresh outbreaks

Fake bank transfer emails stealing Bitcoin and passwords

Cyren has discovered an outbreak of malware which is stealing passwords as well as Bitcoin from crypto-currency wallets on PCs. This versatile keylogger malware is being delivered as an attachment to phony bank transfer emails, which inform the recipient that they have received a deposit. The emails are originating primarily

Email Security Survey: 75% of Companies Hacked in Past Year

A new survey conducted by Osterman Research and co-sponsored by Cyren shows that 75% of businesses surveyed incurred a security breach in the past 12 months. The top two culprits? Email phishing attacks infected systems at 37% of the companies, while 24% of respondents suffered successful ransomware attacks through file

The Rise of Botnets

The year 2016 was certainly notable for Locky and the rise of ransomware, but these last months our attention has been drawn to a fundamental element of the underlying criminal cyber infrastructure — botnets.  In July, major attacks using LizardStresser, a distributed denial-of-service (DDoS) botnet using IoT devices, were launched

New Threat Report: Everything you need to know about botnets

Cyren announces the release of the comprehensive cybersecurity report Botnets: The Clone Army of Cybercrime. This detailed look at a fundamental component of cybercrime infrastructure covers a wide range of botnet-specific topics, ranging from the basics of botnet architecture to in-depth analyses of botnet creation and evasion techniques. Report highlights

Yuletide spam and shopping scams breaking records

Fake Michael Kors shopping site ranks as the highest volume non-malware attack of 2016  Global business email traffic passing through Cyren’s cloud security operations is unfortunately reinforcing Scrooge’s initial take on Christmas, as analysis done this week shows that Christmas-themed email is almost entirely commercial or criminal. Instead of bringing

On Demand Webinar – Botnets: the Clone Armies of Cybercrime

Last week we hosted a webinar titled “Botnets: The Clone Armies of Cybercrime.” Cyren security researchers, Avi Turiel and Geffen Tzur, discussed the history and current state of botnets and shared insights on malicious bot behavior, how to spot it, and what you can do to protect your organization. Some

Malicious Google Chrome extension spreads nude celebrity pdf’s to Facebook

A researcher at Cyren has found that a malicious Google Chrome extension is spreading nude celebrity PDFs to Facebook groups. A user is uploading a PDF document to groups with the name: ”Jessice_Alba_Leaked-sextapeVide_oSun_Dec_4_2016_22_99.mp4.pdf“ Opening the PDF reveals a nude picture with a ”Play“ button in the middle. Clicking on the