Malware

Malware news, analysis, research, how-to, opinion, and video.

Citadel malware now targets password management applications

A new Citadel configuration steals the master keys for two password managers and a secure authentication program

Free Detekt security tool finds surveillance malware

Open source tool is a joint project of multiple privacy groups who investigated malware used to target journalists and human rights activists


Malware served through rogue Tor exit node tied to cyber espionage group

There is strong evidence the malware dubbed OnionDuke was used to target European government agencies, F-Secure says

Malware doesn't discriminate when it comes to Web ads

Racy or benign, your favorite sites have likely exposed you to malware-laden ads

Vulnerability leaves iPhones and iPads open to fake app attack

Attackers can replace legitimate apps with fake ones that access and steal personal information

Apple security checks may still miss iWorm malware

New research says Gatekeeper and XProtect aren't entirely effective in protecting Mac OS X against iWorm malware

globe with world map and circuit board in background digital 200213603 001

The big one: The makings of a global cyber attack

Surprise -- the underlying technology matters less to an attack's success than basic human determination

Tor Project flags Russian 'exit node' server delivering malware

The server used a technique to append malware to legitimate code

Cyber espionage group launches sophisticated phishing attacks against Outlook Web App users

Pawn Storm attacks target military agencies, embassies, defense contractors, and media organizations, Trend Micro says

ransom note

Ransomware takes malware from bad to worse

To thwart attacks like CryptLocker, you need a multipronged defense; new technology doesn't hurt either

One week after patch, Flash vulnerability already exploited in large-scale attacks

The Fiesta exploit kit bundles an exploit for the CVE-2014-0569 vulnerability in Flash Player, researchers found

Man yelling screaming with data streaming out of megaphone

Enough! Stop hyping every new security threat

Logos for malware? Really? Security vendor marketing wizards are going insane

Mayhem malware spreads through Linux servers via Shellshock exploits

The botnet targets Web servers that haven't been patched for recent vulnerabilities found in the Bash Linux shell

proofpoint screenshot 24

An inside look at Russian cyber criminals

A new report takes a rare detailed look at Russian hackers targeting online banking accounts

Cisco, Oracle find dozens of their products affected by Shellshock

Cisco has identified 71 products vulnerable to Shellshock and Oracle 51, but the number is likely to increase

Malvertising campaign delivers digitally signed CryptoWall ransomware

The attacks through malicious online advertisements continue to hit visitors

482251631

Attacks against Shellshock continue as updated patches hit the Web

Updated patches for the vulnerability are in the works, but cyber criminals are targeting the flaw now

serverskulls header

'Spike' toolkit seeks routers, Internet of things for DDoS botnet

Security researchers have recently discovered a toolkit capable of infecting computers, routers and Internet of Things devices to launch large-scale simultaneous DDoS attacks.

security target

Create your own 'dirty dozen' threat list

Which security events should you worry about most? Everyone has different vulnerabilities, so here's how to prioritize

Salesforce.com warns customers of malware attack

A new version of the Dyreza online banking Trojan is stealing Salesforce.com log-in credentials

Load More