Articles for December 2016

Ransomware has risen dramatically since last few years, so rapidly that it might have already hit you or someone you know.

With hundred of thousands of ransomware variants emerging every day, it is quite difficult for traditional signature-based antivirus tools to keep their signature database up-to-date.

So, if signature-based techniques are not enough to detect ransomware infection, then what else can we do?

The solution is RansomFree.

Source: RansomFree Tool Detects Never-Seen-Before Ransomware Before It Encrypts Your Data

Who says you can’t print your own money…
…if you have a BOT farm, seems you can.

The biggest advertising fraud ever!

A group of hackers is making between $3 Million to $5 Million per day from United States brands and media companies in the biggest digital ad fraud ever discovered.

Online fraud-prevention firm White Ops uncovered this new Ad fraud campaign, dubbed “Methbot,” that automatically generates more than 300 Million fraudulent video ad impressions every day.

The cyber criminal gang, dubbed AFT13, has developed Methbot robo-browser that spoofs all the necessary interactions needed to initiate, carry out and complete the ad transactions.

Source: ‘MethBot’ Ad Fraud Operators Making $5 Million Revenue Every Day

How to focus on family, food and fun over Christmas, rather than dealing with a credit card crisis or a ransomware attack.

Source: Our 12 tips for staying safe online this Christmas – Naked Security

Once again, lawmakers demonstrate profound lack of understanding of how the internet works…

Source: Lawmaker urges regulating Facebook and Google’s algorithms – Naked Security

The faux-bad-English hackers wanted BTC 1,000,000, then slashed the price to BTC 10,000…now yours as a job lot for just BTC 1000.

Source: Shadow Brokers are back with ‘stolen NSA cyberweapons’, now 99.9% off – Naked Security

Recently Yahoo disclosed a three-year-old massive data breach in its company that exposed personal details associated with more than 1 Billion user accounts, which is said to be the largest data breach of any company ever.

The new development in Yahoo!’s 2013 data breach is that the hacker sold its over Billion-user database on the Dark Web last August for $300,000, according to Andrew Komarov, Chief Intelligence Officer (CIO) at security firm InfoArmor.

Komarov told the New York Times that three different buyers, including two “prominent spammers” and the third, is believed to be involved in espionage tactics paid $300,000 to gain control of the entire database.

Source: 1-Billion Yahoo Users’ Database Reportedly Sold For $300,000 On Dark Web

Typing ‘legitimate’ instead of ‘illegitimate’ led DNC chief to phishing link and the hack that compromised his emails, report finds

Source: DNC chief Podesta led to phishing link ‘thanks to a typo’ – Naked Security

Reports that the CIA believes Russia sought to help the president-elect win the election by hacking Democratic political organizations has rocked the nation. Mr. Trump dismisses claims that Russia had any influence in the process or that it wanted him in office. Hari Sreenivasan examines what investigations have revealed with Dmitri Alperovitch of Crowdstrike and Eric Lipton of The New York Times.

Source: Reconstructing the Russian hacks leading up to the election

How’s this for a nice Christmas present: their jaw, scraped off the floor and handed back.

Source: Give the gift of a social engineering demo this Christmas – Naked Security

Is your PC infected with Ransomware? Either pay the ransom amount to the attacker or spread the infection further to get the decryption keys.

Yes, this new technique has been employed by cyber criminals with the latest round of ransomware threat, dubbed Popcorn Time.

Initially discovered by MalwareHunterTeam, the new Popcorn Time Ransomware has been designed to give the victim’s a criminal way of getting a free decryption key for their encrypted files and folders.

Popcorn Time works similar to other popular ransomware threats, such as the Crysis Ransomware and TeslaCrypt, that encrypt various data stored on the infected computer and ask victims to pay a ransom amount to recover their data.

But to get their important files back, Popcorn Time gives victims option to pay a ransom to the cyber criminal or infect two other people and have them pay the ransom to get a free decryption key.

Source: This Ransomware Unlocks Your Files For Free If You Infect Others