Ransomware targeting Android users has increased by over 50 percent in just a year, as cybercriminals increasingly take aim at what they view as an easy ecosystem to penetrate. This, the highest number of attempts to infect Android smartphones and tablets with malicious file-encrypting software so far, comes as users increasingly turn to mobiles as their primary devices, storing more and more valuable data on them. Read More.
ESET researchers spotted yet another ransomware attack promising porn to unsuspecting users, this time in the form of a fake Android Pornhub app. Even though researchers often warn users about downloading applications from unofficial app stores, this malicious app capitalizes on the fact that the adult website does, in fact, offer an official app from the PornHub website, but is not available on the Google Play store due to Google's restrictions against hosting adult content, according to ESET's Trends in Android Ransomware report. Read More.
It’s very common to read about malware pilfering all kinds of confidential data from computers — spreadsheets, documents, databases, pictures. Researchers have uncovered a new malware campaign that takes things a step further. It’s recording audio near compromised systems by stealthily switching on the computers’ microphones. Read More.
The RSA report detailed the threat from a malware operation the company dubbed “Kingslayer.” According to RSA, the attackers compromised the Web site of a company that sells software to help Windows system administrators better parse and understand Windows event logs. RSA said the site hosting the event log management software was only compromised for two weeks — from April 9-25, 2015 — but that the intrusion was likely far more severe than the short duration of the intrusion suggests. Read More.
More than 950,000 user accounts of the Coachella music festival allegedly are being sold on the dark web's Tochka marketplace through data trader who goes by the handle Berkut. "Coachella complete database dump from this month," Berkut posted, according to a report by Motherboard, about information that includes usernames, hashed passwords and email addresses but no payment data. Read More.