Malware

(get it in RSS or Atom)

Malware infection suspected at ISC, providers of the BIND DNS server software

The Internet Systems Consortium, better known as ISC, thinks it might have had a malware infection.

An insecure installation of WordPress seems to be behind the problem...

Information-stealing 'Vawtrak' malware evolves, becomes more evasive

Skull. Image courtesy of Shutterstock.

SophosLabs has recently observed some cunning changes made by the authors of the dangerous banking malware 'Vawtrak'.

James Wyke explains.

PayPal, prison and ransomware - 60 Sec Security [VIDEO]

Here's this week's 60 Second Security video...

The latest news presented in a fun way, all in just one minute.

Notes from SophosLabs: Ransomware with a difference - this one is a true virus!

SophosLabs recently drew our attention to some new ransomware that is both interesting and intriguing.

Unusually, this one is a true parasitic virus - it infects other files as well as scrambling them.

Should vapers fear malware-laced e-cigarettes?

Should vapers fear malware-laced e-cigarettes?

A humorous and very likely apocryphal online comment has spun itself up into a major news item. It's tempting to simply ignore the whole nonsense and carry on as normal. But maybe there is something to learn here...

Notes from SophosLabs: On the trail of rootkits and other malware

When an interesting new piece of malware makes the news, the first question people ask is usually, "How does it work? "

And that leaves us with the question behind the question: "How do you tell what it does?"

SSCC 172 - Ransomware's not dead! [PODCAST]

Here's the latest episode of our weekly security podcast.

News you can use!

"Dear ATM, kindly dispense 30 banknotes as a test" - 60 Sec Security [VIDEO]

Here's this week's 60 Second Security video, for your viewing pleasure.

From scammers to spammers in just one minute...

"Oops! I'm sorry about that" - 60 Sec Security [VIDEO]

Here it is - this week's 60 Second Security video.

News that will amuse, and it only takes a minute...

Kmart becomes the latest retail data breach victim

Kmart_logo_250

Kmart has been confirmed as the latest retail chain to be breached after its parent company admitted that some customers’ debit and credit card numbers had been compromised.

Mummy, my schoolbooks are spying on me! 60 Sec Security [VIDEO]

Here's our latest 60 Second Security video for your viewing pleasure.

The wry side of the week's news, in just a minute...

Return of the Android SMS virus - self-spreading "Selfmite" worm comes back for more

slfm-250

Back in June 2014, we wrote about an Android virus that worked a bit like the email worms of the early 2000s.

Well, that Android virus has made a comeback, and this variant is both pushier and more flexible than before...

SSCC 166.5 - Special edition from the Virus Bulletin 2014 conference [PODCAST]

Sophos security expert Chester Wisniewski was at the Virus Bulletin 2014 conference in Seattle.

In this special edition of the Chet Chat, Paul Ducklin puts Chet on the other side of the mic to find out more about both the technology and the ethics of anti-malware research.

Point-of-Sale vendor loses password, causes breaches at 324 US restaurants

In its own words, a US point-of-sale vendor "acts to Block Payment Card Security Incident."

Bit late for the 324 restaurants that were breached for between 3 days and 3 months in the incident...

From the Labs: VBA is definitely not dead - in fact, it's undergoing a resurgence

Fake Sophos Encryption

Our most recent detection statistics show that using Visual Basic code in malicious documents is a trend on the rise. So why have malware authors turned to Visual Basic to do their bidding?

Home Depot says, "Er, yes, we did have a breach actually"‏

Home Depot

Just how big and bad it will turn out to be is still unknown...all we know so far is that Home Depot has officially confirmed that, yes, there was indeed a breach.

Massive cyber attack on oil and energy industry in Norway

Massive cyber attack on 300 Norwegian oil and energy industry

As many as 300 oil and energy companies have been targeted in the largest ever coordinated cyber attack in Norway.

Duping the machine - the cunning malware that throws off researchers

Malware. Image courtesy of Shutterstock

Traditionally, when malware detects that it is not running in a genuine victim setting, it will simply exit immediately. But there's a certain subset of malware families that are more cunning when they detect an analysis environment...

"You're under arrest for possession of an insecure phone" - 60 Sec Security [VIDEO]

Here's this week's 60 Second Security video.

News you can use in a format you can enjoy...all in 60 seconds!