ESET Security

Ransomware cost US companies almost $21 billion in downtime in 2020

An analysis by Comparitech of 186 successful ransomware attacks against businesses in the United States in 2020 has shown that the companies lost almost US$21 billion due to attack-induced downtime.

Plugging the holes: How to prevent corporate data leaks in the cloud

Cloud misconfigurations have become a frequent occurrence. It’s responsible for the leak of billions of records annually and remains a major threat to corporate security, reputation, and bottom line.

Android Espionage Campaign Targeting Kurdish Ethnic Group Using Backdoors Disguised as Legitimate Apps

The newly discovered Android 888 RAT has been used by the Kasablanka group and by BladeHawk. Both of them used alternative names to refer to the same Android RAT – LodaRAT and Gaza007 respectively.

Security Vulnerability in Quebec’s VaxiCode App can Make it Recognize Non-government Issued QR Codes

Researchers informed Akinox about the vulnerability we found on Sunday, and we have confirmed that the VaxiCode Verif 1.0.2 update for iOS released in the last few days fixes the flaw.

Health authorities in 40 countries targeted by COVID‑19 vaccine scammers

The warning on COVID-19 vaccine scams was issued to all of INTERPOL’s 194 member countries after the international law enforcement agency registered roughly 60 cases from 40 countries.

Cybercriminals Use IISerpent Server-side Malware to Manipulate Search Engine Results and Conduct Fraud

Contrary to IISpy and IIStealer, IISerpent affects neither the compromised server nor the server’s users. In fact, it ignores all requests coming from legitimate visitors of the compromised sites.

IISpy: A complex server‑side backdoor with anti‑forensic features

ESET researchers have discovered and analyzed a previously undocumented backdoor, implemented as an extension for Internet Information Services (IIS), Microsoft’s web server software.

Popular Wi‑Fi routers still using default passwords making them susceptible to attacks

A recent study by technology website Comparitech revealed one in 16 home Wi-Fi routers is still using the manufacturer’s default admin password and leaving the door open to cybercriminals.

Some URL shortener services distribute Android malware, including banking or SMS trojans

Link shortener services were seen pushing “calendar” files to iOS devices and distributing Android malware. One such malware named Android/FakeAdBlocker also executes additional payloads.

Google fixes actively exploited Chrome zero‑day

Google has rolled out an update for its Chrome web browser to fix a bunch of security flaws, including a zero-day vulnerability that is known to be actively exploited by threat actors.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags