Security News – Malware Board

Mar 26

New phishing email on the trends to infiltrate Gandcrab 5.2 ransomware

Cyber Crooks using false CDC emails to proliferate Gandcrab v5.2 ransomware A Cybersecurity company My OnlineSecurity announced a week ago that had spotted a new spam campaign that leading the most infamous Gandcrab v5.2 ransomware. It claims that the false message comes on the users’ Gmail account with the address line “Centres For Disease Control and Prevention” and the Subject is about the “Flu pandemic warning”. Like other spam campaign, the spam email message encourages the recipients into clicking some document attached on the email by claiming that this contains direction to prevent the Flu. More about the designed spam email message Below is the full text of the spam email the senders design: “Please focus on this special announcement! Presently, influenza activity is severely elevated. US Center for Disease Control and Prevention (CDC) estimates that during a last four months, the situation has deteriorated essentially: near 20 thousand diseased Read more

Mar 25

Digital ad fraud techniques by hackers on the trends causing huge loss to advertisers

By this segment, we will come across different digital ad fraud techniques used by hackers to make money. This will help you to detect as well as getting rid of them. The multi-billion-dollar online advertising is still growing. It is predicted that the global digital ad expenditure which constitutes the 44% of total ad expenditure will reach US$225 billion. This makes the Cybercriminals creating technologies and techniques to generate money by online Ad fraud. The ads fraud refers to as Invalid traffic is a practice of fraudulently representing online advertisements impressions, clicks, conversion or data events in order to generate revenue. It is mostly associated with ads, videos ads and in app ads. It is expected that of about 6$ billion and more, Cybercriminals steal from the advertisers each year through the Ad fraud. Since many an ad fraud is undetectable, it will be said that the actual data is Read more

Mar 19

Windows 10 to automatically prevents problematic updates installation

Microsoft has just launched a new safety feature automatically uninstall problematic software updates to improve the way updates are installed and removed on Windows 10. From now on, if a recent update is causing issues to your system, the Windows 10 will have that much power to uninstall it with the help of the new feature. Windows automatically installs updates to keep your device secure and running at peak efficiency. Occasionally, these updates can fail due to incompatibility or issues in new software. Your device has recently recovered from a startup failure if you have received this notification: “We removed some recently installed updates to recover your device from a startup failure.” If Windows detects this, it will try to resolve the failure by uninstalling recently installed updates. By this feature, the “problematic updates” will be paused for 30 days. During this time, the Microsoft will get the chance to Read more

Mar 19

BE Careful! Airlines plane crash Boeing 737 MAX 8 spam email is in Circulation

A new Spam Email Campaign has been detected in the Wild. The scammer behind this scam campaign claims himself a private intelligence analyst. The spam email containing text message discusses about two recent crashes involving Boeing 737 Max aircraft. He supposedly claims he has discovered a leaked document on the Dark Web which contains information about other airline companies that will be affected by such crashes in the future. The two incidents mentioned in the spam email In the Airlines plane crash Boeing 737 MAX 8 spam email, the scammer tries to scam the unsuspecting users by two recently crashes involving Boeing 737 Max aircraft. In the first incident, Ethiopian Airlines Flight ET302 from Addis Adaba, Ethopia, to Nairobi, Kenya, crashed just minutes after taking off from Addis Adaba International Airport on 10th of March. In the second incident that happens several months before on 29 October 2018 when a Read more

Mar 18

AV-Comparatives test reveals two third of AV on Google Play are bogus

AV-Comparatives, an Australian Independent organization that tests and assesses antivirus software, recently have published a report by checking the effectiveness of 250 AV engine from the Google Chrome. According to the report, two third of the apps are totally useless and are falsely advertised. On their test, the AV-Comparatives used 2000 Android malware and 250 AV engine from Google Play store. It is surprisingly to know that only 1 out of 10 apps show 100% detection to the malware. Two third and more are those apps who do not even pass the basic threshold of just 30%. According to the report of AV-Comparatives, most bogus AV engines are just being made for monitory gain; their developers have not much experienced how to create reliable security: Most of the above apps, as well as the risky apps already mentioned, appear to have been developed either by amateur programmers or by software Read more

Mar 13

Yatron ransomware contains malicious EternalBlue and DoublePulsar to exploit targeted PC

The Yatron ransomware is one that scans the targeted Computer for specific files and encrypts them by using RaaS cryptography. Immediate after that it appends the filenames by .Yatron extension and makes the files inaccessible. Once the encrypted process is finished, the ransomware generates .txt file which contains a short message. The message states that the victims have to pay ransom fee within 72 hours to the developers otherwise the encrypted files will be deleted. The ransomware sends the encryption passwords and unique code to the command and control server. On the ransom note, developers supposedly claim to provide the decryption when the ransom fee is made. According to Cyber-security researcher Michael Gillespie, Yatron is based on HiddenTear but since the encryption algorithm has been modified so that it cannot be decrypted by using known methods. Malicious codes on Yatron to cause EternalBlue and DoublePulsar exploits For your information, EternalBlue Read more

Mar 12

Ubuntu 14.04.06 LTS (Trusty Tahr) releases: Fixes APT flaws/Bugs

Ubuntu 14.04.06 LTS (Trusty Tahr) was released back in year 2014. This version has recently given an update last month and is available on the official website of the Ubuntu. Trusty Tahr represents the Codename of the latest version and LTS is an abbreviation that means Long Term Support – which is 5 years up to 2023 of free security and maintenance updates, guaranteed. About Ubuntu Ubuntu is a popular operating system for cloud computing with support for OpenStalk. It is released every sixth month and the LTS released on every two years. It has one of the most straightforward installers among all Linux distributions. The Distrowatch.com places this to the second after Linux Mint from the group of Linux distributions. Linux Distribution is the one whose job is to install the system on hardware. Ubuntu’s popularity is just because its installers provide an ease even for a beginner or Read more

Mar 11

Facebook Messenger bug reveals chatting by users on Facebook

Mark Zukenberg, the CEO of the famous social media site- Facebook discussed on Thursday about his Platform to make more secure and added that he is working to make Facebook “privacy focused” like WhatsApp. This was a result of Ron Masas from Company Imperva research who found that the Facebook has been surrounded by a host of privacy issues. The researcher found a bug in the Facebook Messenger that allowed websites to gain access to users’ data, including who they have been chatting with. According to his blog post on Thursday, the vulnerability in the web version of Messenger allowed any website to expose who you have been messaging. “Browser-based side-channel attacks are still an overlooked subject. While big players like Facebook and Google are catching up, most of the industry is still unaware”, he added. Two types of data recorded The researcher recorded that the Facebook Messenger was prone Read more

Mar 05

TikTok to pay $5.7 for collecting children’s data

TikTok gathers confidential data of children under 13 TiKToK, also known as Musical.ly is one which doesn’t require any introduction. It is a service which allows creating and sharing short video. This gains the popularity over the youngster within few years of its launched year September 2016. The current news states that the organization was failed to fulfill the demand of the Children’s Online Privacy Protection Act and due to which, it has to pay $5.7 million as penalty for its illegitimate activity. Under Children’s Online Privacy Protection Act, the organization would not allow to collect the Children’s sensitive data below the age of 13 years. However, it failed to complete that requirement and thus it has to pay the money as punishment. It has also been asked to delete the videos created by Children under 13. The TiKTok puted silent and did not responded when it was asked to Read more

Mar 01

Easy steps to remove search.searchfch.com

Delete search.searchfch.com from the system search.searchfch.com is a fake search engine that redirects search queries and delivers intrusive advertisements. It often records the day to day browsing related information. Judging on its appearance, it might look as legitimate one that generate improved search results and provide quick access to popular websites like Facebook, Gmail etc. It is promoted by browser hijacker- Free Converter Hub which intrudes when you download some regular software – particularly freeware program – by not paying much attention on installation steps. Upon getting installed, the browser hijacker application, as the name suggests, hijacks the installed browsers and modifies the settings. This allows search.searchfch.com site to make itself a new browser for the system. It replaces the existing browser’s homepage, search engine and tab pages. The potentially unwanted application (PUA) downloads several helper objects to prevent users to restore the settings to the default. Thus, the victims Read more