A new banking malware called Red Alert 2.0 poses a significant threat to Android users. The Trojan leverages third-party apps to steal data.
CCleaner was compromised at the main distribution site to include a malware attack. The Floxif attack is a downloader that breached the app supply chain.
IBM Managed Security Services (MSS) detected a sixfold increase in attacks involving embedded CPU mining tools between January and August 2017.
Cybercriminals are using content delivery networks to spread malware. This vector is especially effective because it is difficult to block CDN IPs.
Kromtech Security found different types of malware that infected more than 4,000 ElasticSearch servers. Other security experts found additional risks.
New malware attacks are using popular router hardware to carry out proxy-based credential stuffing. Admins should regularly install firmware updates.
IBM X-Force reported a downward trend in publicly available exploit code, but security teams must still prioritize vulnerability and patch management.
A new, upgraded version of remote access malware Client Maximus points to the growing sophistication of cybercriminals in Brazil.
A malware group is using Facebook's CDN servers to store malicious files that it later uses as a vehicle for security breaches targeting Brazilian users.
Financial institutions need intelligence-driven fraud detection and prevention solutions to protect customers' sensitive data from phishing attacks.