Windows malware is in 132 apps hosted on official Google Play store
According to security experts, all 132 apps contained a tiny iframe inside the source code of HTML pages showed at some point or another to their users.
This iframe attempted to connect to remote servers and download another payload.
All the remote servers were down when researchers came across the infected apps, but servers were known hotspots for malicious activity, being involved in many Windows malware distribution campaigns.
All app developers located in Indonesia
Researcher also discovered that the seven developers of the 132 infected apps appear to reside in Indonesia, meaning they most likely used a malicious torrent to download an infected IDE, or were victims of a local malware distribution campaign.
Google has temporarily removed the apps from the Play Store.
Yahoo CEO Marissa Mayer announced she’ll forgo her annual bonus ($ 2 million) and equity grant ($14 million), which she’ll be redistributing to Yahoo employees instead.
Her announcement comes on the same day Yahoo filed its quarterly 10-K report with the SEC, where the company revealed that a third-party forensics firm discovered clues that over 32 million Yahoo accounts might have been accessed illegally using forged cookies in 2015 and 2016.
Yahoo says these account hacks are related to a data breach it disclosed last year.
Hackers accessed 32 million Yahoo accounts using forged cookies
The filing revealed that Yahoo knew the attacker had accessed proprietary source code that allowed him to learn how to create forged cookies and access Yahoo accounts without the user’s password.
Initially, Yahoo said the attacker used this technique to access only a few accounts.
This may also be one of the reasons why Yahoo blamed the incident on a state-sponsored actor, believing these were targeted attacks carried out only against a handful of selected individuals.
In yesterday’s latest SEC filing, Yahoo says that the number of Yahoo accounts compromised via forged cookies is bigger than the initial estimation, and is now at over 32 million.
Among today’s fastest-growing cybercrime epidemics is “ransomware,” malicious software that encrypts your computer files, photos, music and documents and then demands payment in Bitcoin to recover access to the files.
A big reason for the steep increase in ransomware attacks in recent years comes from the proliferation of pointand-click tools sold in the cybercrime underground that make it simple for anyone to begin extorting others for money.
“Overlay” card and PIN skimmers made to be placed atop I ngeni- co-brand card readers at store self-checkout lanes. I’m revisiting the topic again because a security technician at a U. S.based retailer recently shared a few photos of several of these devices pulled f rom compromised card terminals, and the images and his story offer a fair bit more detail than in previous articles.
A handful of readers have inquired as to the whereabouts of Microsoft‘ s usual monthly patches for Windows and related software.
Microsoft opted to delay releasing any updates until next month, even though there is a zero-day vulnerability in Windows going around. However, Adobe did push out updates this week as per usual to fix critical issues in its Flash Player software.
In a brief statement this week, Microsoft said it “discovered a last minute issue that could impact some customers” that was not resolved in time for Patch Tuesday, which normally falls on the second Tuesday of each month.
In an update to that advisory posted on Wednesday, Microsoft said it would deliver February’s batch of patches as part of the next regularly-scheduled Patch Tuesday, which falls on March 14.
One of the most-viewed stories on this site is a blog post+graphic that I put together last year to illustrate the ways that bad guys can monetize hacked computers. But just as folks who don’t bank online or store sensitive data on their PCs often have trouble understanding why someone would want to hack into their systems, many people do not fully realize how much they have invested in their email accounts until those accounts are in the hands of cyber thieves.
One prominent credential seller in the underground peddles iTunes accounts for $8, and Fedex. com, Continental. com and United.com accounts for USD $6. Groupon.com accounts fetch $5, while $4 buys hacked credentials at registrar and hosting provider Godaddy. com, as well as wireless providers Att. com, Sprint. com, Verizonwireless. com, and Tmobile.com. Active accounts at Facebook and Twitter retail for just $2.50 apiece.
Some crime shops go even lower with their prices for hacked accounts, charging between $ 1 to $ 3 for active accounts at dell.com, overstock.com, walmart.com, tesco.com, bestbuy.com and target.com, to name just a few.
Those same contacts may even receive a message claiming you are stranded, penniless in some foreign country and asking them to wire money somewhere.
If you’ve purchased software, it’s likely that the license key to that software title is stored somewhere in your messages. Do you use online or cloud file-storage services like Dropbox, Google Drive or Microsoft Skydrive to backup or store your pictures, files and music? The key to unlocking access to those files also lies in your inbox.