Ransomware targeting Android users has increased by over 50 percent in just a year, as cybercriminals increasingly take aim at what they view as an easy ecosystem to penetrate. This, the highest number of attempts to infect Android smartphones and tablets with malicious file-encrypting software so far, comes as users increasingly turn to mobiles as their primary devices, storing more and more valuable data on them. Read More.
ESET researchers spotted yet another ransomware attack promising porn to unsuspecting users, this time in the form of a fake Android Pornhub app. Even though researchers often warn users about downloading applications from unofficial app stores, this malicious app capitalizes on the fact that the adult website does, in fact, offer an official app from the PornHub website, but is not available on the Google Play store due to Google's restrictions against hosting adult content, according to ESET's Trends in Android Ransomware report. Read More.
It’s very common to read about malware pilfering all kinds of confidential data from computers — spreadsheets, documents, databases, pictures. Researchers have uncovered a new malware campaign that takes things a step further. It’s recording audio near compromised systems by stealthily switching on the computers’ microphones. Read More.
The RSA report detailed the threat from a malware operation the company dubbed “Kingslayer.” According to RSA, the attackers compromised the Web site of a company that sells software to help Windows system administrators better parse and understand Windows event logs. RSA said the site hosting the event log management software was only compromised for two weeks — from April 9-25, 2015 — but that the intrusion was likely far more severe than the short duration of the intrusion suggests. Read More.
A new file-encrypting ransomware program for macOS is being distributed through BitTorrent websites, and users who fall victim to it won’t be able to recover their files, even if they pay. Crypto ransomware programs for macOS are rare. This is the second such threat found in the wild so far, and it’s a poorly designed one. Read More.
More than 950,000 user accounts of the Coachella music festival allegedly are being sold on the dark web's Tochka marketplace through data trader who goes by the handle Berkut. "Coachella complete database dump from this month," Berkut posted, according to a report by Motherboard, about information that includes usernames, hashed passwords and email addresses but no payment data. Read More.