New Malware Threats that are making the rounds this week:
BKDR_WIPALL.A Rated as a Medium Damage Risk
Downloaded from the Internet or dropped by other malware,
this backdoor attempts to grant access to the System Root folder of an infected
machine. It also installs another backdoor on the system. It is implicated in
the Sony Pictures December 2014 attack.
TROJ_REGIN.SM Rated as a High
Damage Risk
This Trojan belong to the malware family known as REGIN.
REGIN is a multi-component malware that uses different files for its malicious
functionalities and payload. It also sports multiple advanced techniques to
avoid user and security vendor detection.
This file is usually found in the System32 folder but uses many
different names so research this malware closely before attempting to remove
it. Delivery is mostly accomplished via
infected web sites although there has been one report of it using Yahoo
Messenger.
BEWARE OF THE NEW FAMILY OF MALWARE THREATS BASED UPON REGIN!
Please note that the Regin malware is a new and very
sophisticated delivery mechanism capable of easy modification for use by more
than one hacker. It is now being sold or
rented on the internet for other hackers to add their code. This and its future variants will be a
problem for the foreseeable future.
Recent Software/OS/App Vulnerabilities
Adobe Flash Player Remote Code Execution Vulnerability
(CVE-2014-8439)
First Reported Date: 25 Nov 2014
Vulnerability in Kerberos Could Allow Elevation of
Privilege (3011780) First
Reported Date: 18 Nov 2014
Microsoft Releases 14 Security Advisories
First Reported Data: 11 Nov 2014
CryptoLocker and Variants Updates: Did you know?
Since its introduction in September, 2013, there have
been 14 variants of the ransomware CryptoLocker published by hackers. This ransomware and its variants are reported
to have infected over 830,000 computers and raked in excess of $249 million is
just over 15 months.
Here are some Helpful Tips For Securing Portable Devices by
Anna Beltran
Jeff Hoffman is an It Security Consultant with ACT Network Solutions and author of the book "Intruders at the Gate: Building an Effective Malware Defense System" He can be reached at jhoffman@act4networks.com.If you'd like to be added to our Weekly Security Threat Updates Report just send Jeff an email with the Subject "I'd like to receive the Weekly Threat Alerts"
No comments:
Post a Comment