Wednesday, December 10, 2014

Security Threats For The Week of December 8 2014

Here is the latest ACT Security Threats List for December 8, 2014 from ACT

New Malware Threats that are making the rounds this week:
BKDR_WIPALL.A                             Rated as a Medium Damage Risk
Downloaded from the Internet or dropped by other malware, this backdoor attempts to grant access to the System Root folder of an infected machine. It also installs another backdoor on the system. It is implicated in the Sony Pictures December 2014 attack.
TROJ_REGIN.SM                             Rated as a High Damage Risk
This Trojan belong to the malware family known as REGIN. REGIN is a multi-component malware that uses different files for its malicious functionalities and payload. It also sports multiple advanced techniques to avoid user and security vendor detection.  This file is usually found in the System32 folder but uses many different names so research this malware closely before attempting to remove it.  Delivery is mostly accomplished via infected web sites although there has been one report of it using Yahoo Messenger. 
BEWARE OF THE NEW FAMILY OF MALWARE THREATS BASED UPON REGIN!
Please note that the Regin malware is a new and very sophisticated delivery mechanism capable of easy modification for use by more than one hacker.  It is now being sold or rented on the internet for other hackers to add their code.  This and its future variants will be a problem for the foreseeable future.
Recent Software/OS/App Vulnerabilities
Adobe Flash Player Remote Code Execution Vulnerability (CVE-2014-8439)                              First Reported Date:  25 Nov 2014
Vulnerability in Kerberos Could Allow Elevation of Privilege (3011780)                                       First Reported Date:  18 Nov 2014
Microsoft Releases 14 Security Advisories                                                                                          First Reported Data:  11 Nov 2014
CryptoLocker and Variants Updates:  Did you know?
Since its introduction in September, 2013, there have been 14 variants of the ransomware CryptoLocker published by hackers.  This ransomware and its variants are reported to have infected over 830,000 computers and raked in excess of $249 million is just over 15 months.
Here are some Helpful Tips For Securing Portable Devices by Anna Beltran
http://ctoinsights.trendmicro.com/2014/12/setting-up-your-gadgets-securely
Jeff Hoffman is an It Security Consultant with ACT Network Solutions and author of the book "Intruders at the Gate: Building an Effective Malware Defense System"  He can be reached at jhoffman@act4networks.com.

If you'd like to be added to our Weekly Security Threat Updates Report just send Jeff an email with the Subject "I'd like to receive the Weekly Threat Alerts"
 

 
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)