Security Alert: Supply Chain Attack Nabs CCleaner

Researchers at Cisco Talos discovered that CCleaner’s 32-bit version (v5.33.6162 and CCleaner Cloud v1.07.3191) were compromised using the app’s v5.33 installer. According to the Graham Cluley post, once a user downloaded and installed the tainted version, malware would determine if the user had admin rights and then proceeded to steal data, sending it to the hacker’s server. […]

Security Alert: New IRS/FBI Ransomware Scam

A new ransomware phishing scam is going around using IRS and FBI emblems to trick unsuspecting victims into clicking infected links that when clicked will encrypt your files and hold your data for ransom. Remember, the IRS does not email, send text messages nor will they contact you through social media to discuss tax issues. […]

To A Hacker—You’re Not Important But Your Data Is!

Your information is everywhere—on your personal computer’s hard drive, shopping sites, social media sites, online services you’ve signed up for, etc. How many online forms have you filled out in the past three months? Probably more than you can remember. Where do you think all this information goes? To corporate and Government databases, that’s where. […]

Security Alert: DocuSign Breach Leads To Phishing Attacks

A recent breach at DocuSign has led to phishing campaigns designed to infect recipients with credential stealing and banking trojans: Pony, EvilPony and ZLoader. DocuSign is one of the most widely used electronic signature applications with 200+ million users. As an immediate measure, DocuSign recommends that you delete any email that appears to come from […]

Security Alert: Massive Google Docs Phishing Campaign

A very convincing and deceptive Google Docs phishing scheme hit the internet yesterday ensnaring thousands. The email is very short and looks like it came from someone you know saying that a document in Google Docs has been shared with you and inviting you to view it. After the user clicks the link or button, […]

ALERT: New Malware Campaign With A 90% Success Rate

Researchers have discovered a brand new, sophisticated spear phishing campaign that fools 90% of their targets into opening infected attachments or visiting spoofed websites. Once a target takes action, the malware either steals data, credentials or both. These hackers are very savvy—diligently researching targets, tailoring messages specifically to them and adding personalized information to fool […]

Security Alert: Karma Ransomware Hides In SW Downloads

  Security blog, Graham Cluley posted yesterday that researchers discovered that Karma ransomware is piggybacking on free internet downloads. Once downloaded onto your PC, Karma checks to see if it is running on a virtual machine. If it is, it terminates itself but if it detects that it is running on a physical machine it […]

Locky Ransomware Diguises Itself Again

Locky ransomware keeps evolving in an effort to live on!  Security firm, Bitdefender through its blog, Hot For Security, reports an uptick in SPAM attacks where malicious emails carrying infected attachments warn users of suspicious money movements from bank accounts, credit card suspensions, etc. Once the target clicks on the attachment, they are infected with […]

Security Alert: Locky Ransomware Is Now THOR

Ransomware gangs are at it again. A new Locky ransomware variant now carries the THOR extension. Here’s what you should know: Like Locky, THOR is distributed via SPAM campaigns. Recent emails masquerade as a request to open a “budget forecast” attachment for a soon-to-be-due project. The bogus email carries an infected attachment usually a zip […]

Security Alert: Shape-shifting Malware Infects Thousands

BAE Systems warns that a modified strain of the Qbot malware has already infected over 54,000 PCs worldwide with 85% of infections occurring in the U.S. The modified version is network-aware and designed to harvest credentials from a target’s computer systems. Here are the stats: Qbot uses a “domain generation algorithm” that gives it the […]