A Week in Security (May 25 – 31)
Here’s a review of last week’s posts on Malwarebytes Unpacked:
- Tails, The Amnesic Incognito Live System (Privacy) Senior Security Researcher Jean Taggart discussed Tails, a popular Linux distro, where you can get it, and how it works.
- A look at a PayPal phish in the making (Fraud/Scam Alert) In this blog, Senior Security Researcher Jérôme Segura detailed his encounter with a phishing page in the middle of its creation, which allowed him access to files in the domain where the phish page was being hosted.
- Five PE Analysis Tools Worth Looking At (Malware Analysis) Malware Intelligence Analyst Joshua Cannell had put together a list of tools for the budding and advance malware analyst.
- Battle.net Phish Dupes Gamers with Cheating Accusations (Fraud/Scam Alert) Malware Intelligence Analyst Christopher Boyd found a sneaky phish that, first, accuses spam recipients of cheating, and then leads them to hand over their credentials and answer to their account’s security question.
- Taking off the Blackshades (Cyber-crime) Malware Threat Intelligence Lead Adam Kujawa took on Blackshades, the potential danger one may encounter who are willing to use RATs for their own personal advantage, the troubles of having such a Trojan installed on a system, and the prediction that RATs will continue to become a threat.
- Gaming Site is New Home to Spammed Free Movie Links (Security Threat) I revealed several individual profiles and group pages on Steam that contain multiple links to a third-party site that allows users to stream a movie or episode of a TV series online. They may look innocent, albeit spammy, but PUPs may be involved.
Top news stories:
- Unsafe cookies leave WordPress accounts open to hijacking, 2-factor bypass. Electronic Frontier Foundation (EFF) had determined that internet users who accessed their WordPress accounts over insecure networks, which are generally public Wi-Fi hubs, are in danger of having their domain hijacked by script kiddies. (Source: Arstechnica)
- Google releases VirusTotal Uploader for OS X, hopes more malware submissions will beef up Mac security. iOS users can now easily upload files they suspect can be malicious without accessing the VirusTotal website with this new tool from Google. (Source: The Next Web)
- Watch Dogs Torrent Comes with Bitcoin Malware. Hackers took advantage of the much-awaited hacking game, Watch Dogs, by luring users into downloading unauthorized torrents of it. The files were found to be Bitcoin mining software in the end. (Source: Tom’s Guide)
- Your iPhone has been taken hostage. Pay $100 ransom to get it back. Reports of Australian users having their Apple mobile devices taken hostage by a hacker, who identified himself as Oleg Pliss. Other reports reveal that this threat reached the shores of California. (Source: Arstechnica)
- Wicked hybrid of Zeus and Carberp malware unleashed to the wild. As ransomware grew in number and sophistication, so do information stealers. (Source: CSO)
- HeartBleed Virus Removal Tool Actually Carries a Trojan. We were expecting this: online criminals using a mainstream threat to get users to download their malicious product has been a tried-and-tested method—unfortunately, with much success. (Source: Softpedia)
Stay secure, everyone!