cybercriminals
Shamoon attacks persist
While it still unknown whether the recent attacks against Saudi Aramco and RasGas were part of the so-called Shamoon attacks, the latter are continuing unabated, says …
Fake Amazon emails open the way for malware
The CVE-2012-4681 Java zero-day vulnerability might have been patched, but because it was added to the popular Blackhole exploit kit and because most users regularly forego …
Fake AmEx “Security Verification” phishing emails doing rounds
Malicious spam emails impersonating American Express have been hitting inboxes in the last few days, trying to make recipients open the file in the attachment. The email …
“Win 8 Security System” rogue AV spotted
Windows 8 has not yet been released and cyber crooks are already taking advantage of its name. McAfee researchers have recently spotted a new rogue AV solution dubbed …
Spoofed Microsoft notification leads to Zeus
Microsoft has updated its Services Agreement last week, and has begun notifying its users about the change via email. Eager to take advantage of any kind of legitimate opening …
AV-killing worm spreads via Facebook chat and IM clients
A rather industrious piece of malware that – among other things – paves the way for other malware by disabling AV solutions and software update modules has been …
Java 0-day exploit served from over 100 sites
The problem of the two unpatched Java zero-day vulnerabilities that are actively exploited in the wild by attackers looking to gain access to their targets’ computers is …
Beware of fake Symantec AV notifications
Malware peddlers occasionally take advantage of the good reputation of big security companies to spread their malicious wares, and in a recently spotted malicious email …
Java 0-day exploit added to Blackhole kit, still no news about patch
The recently discovered Java zero-day flaw that has been spotted being used in limited targeted attacks in the wild has created quite a stir. A module that exploits the …
Fake Facebook photo notifications carry malware
Fake Facebook notifications informing users that a friend has posted a new photo of them on the social network have been spotted hitting inboxes around the world. The emails …
“Tax Payment Rejected” spam campaign
Bogus emails supposedly coming from the US Internal Revenue Service (IRS), informing users that their “tax transaction” has been cancelled and trying to get them …
“Compensation for Scam Victims” 419 scam doing rounds
The psychology and economics behind the so-called Nigerian advanced fee fraud scams have been recently been explained by Microsoft researcher Cormac Herley in great detail, …
Featured news
Resources
Don't miss
- Why your security team feels stuck
- It’s time to give AI security its own playbook and the people to run it
- Kanvas: Open-source incident response case management tool
- 6 eye-opening books on AI’s rise, risks, and realities
- Check for CitrixBleed 2 exploitation even if you patched quickly! (CVE-2025-5777)