Tags: malware

Medigate gets funding to secure medical devices

Medigate, another of the seemingly endless stream of Israeli cybersecurity companies, has announced $5.35 million in seed funding. The funding has come from YL Ventures and Blumberg Capital. The company is focused on securing medical devices on healthcare provider networks. The money will enable it to further develop its own technology platform. According to Jonathan…

Comodo launches free cWatch Web website malware checker

Cybersecurity company Comodo has made its first announcement since it sold its SSL business to Francisco Partners. It has launched a free website malware checker and paid-for monitoring service called cWatch Web. This builds on the existing Comodo Web Inspector offering and sits on Comodo’s cWatch platform. According to Melih Abdulhayoglu, CEO of Comodo: “After…

Malwarebytes slams poor AV solutions

Security vendor Malwarebytes has taken aim at the AV industry. It has released details showing how ineffective many AV solutions are. It’s primary target are those AV solutions that rely solely on signature-based detection methods. The blog by Marcin Kleczynski, CEO and Co-Founder, Malwarebytes states: “With signature-based detection methods, traditional AV solutions are simply weak against…

Is htpRAT China’s latest attack on ASEAN?

Security vendor RiskIQ has published a blog and a white paper (registration required) laying out its analysis of the htpRAT malware. The evidence it provides points to htpRAT having been developed and distributed by groups associated with China. RiskIQ goes as far as stating: “[htpRAT] is the newest weapon in the Chinese adversary’s arsenal in…

Companies buying Dark Web intelligence

Threat intelligence provider Recorded Future has said that 70% of its customers are using threat intelligence sourced from the dark web. The data is being used to identify compromised assets such as user credentials and intellectual property. It also says that customers are using the data to assess their vulnerability to attack. According to Matt…

Comodo spots Asasin extension used by ransomware

Comodo Threat Intelligence Labs has uncovered a fourth wave of IKARUSdilapidated Locky ransomware attacks. Like previous waves, it is driven by botnets and uses an unknown file extension to bypass security software. The botnets are using a social engineering-based phishing attack targeting both businesses and individuals. The email uses the title Supplement Payment. It appears…

Apple fails to deal with EFI security failures

Security vendor Duo Security has warned that Apple Mac users are at risk of targeted and stealthy attacks. What will concern Apple customers is that the risk is not from third-party applications. It is caused by what Duo Security is calling a: “systemic issue that leaves Apple Mac computers susceptible to exceptionally targeted and stealthy…

GO Keyboard spies on users claims Adguard

Ad blocker Adguard has revealed that GO Keyboard, popular with Android users, is harvesting personal data from users. The discovery came as Adguard carried out research on keyboard apps used by Android users. GO Keyboard is one of, if not the most popular Android apps in this category. Adguard claims that the app has more…

Check Point Research calls out DU Antivirus Security

Check Point mobile threat researchers have identified a version of DU Antivirus Security that harvested user data without consent. They believe that the app, which was free, has been downloaded between 10-50 million times. On first install onto a device the app proceeded to harvest data from the device. Among the data it collected were…

New KHRAT campaign targets Cambodia

Researchers from Palo Alto Networks security team Unit 42 report an increase in attacks by KHRAT. The Code 42 researchers say that since June there has been a slight increase in visibility of KHRAT as it starts to use new techniques to infect machines. These new techniques represent a so-far unrealised potential, though KHRAT has…