Welcome

Chinese Researchers Disrupt Malware Attack That Infected Thousands of PCs – Tempemail – Blog – Emails

Chinese security firm Qihoo 360 Netlab said it partnered with tech giant Baidu to disrupt a malware botnet infecting over hundreds of thousands of systems. The botnet was traced back to a group it calls ShuangQiang (also called Double Gun), which has been behind several attacks since 2017 aimed at compromising Windows computers with MBR […]

New ComRAT Malware Uses Gmail to Receive Commands and Exfiltrate Data – Tempemail – Blog – Emails

Cybersecurity researchers today uncovered a new advanced version of ComRAT backdoor, one of the earliest known backdoors used by the Turla APT group, that leverages Gmail’s web interface to covertly receive commands and exfiltrate sensitive data. “ComRAT v4 was first seen in 2017 and known still to be in use as recently as January 2020,” […]

HTTP Status Codes Command This Malware How to Control Hacked Systems – Tempemail – Blog – Emails

A new version of COMpfun remote access trojan (RAT) has been discovered in the wild that uses HTTP status codes to control compromised systems targeted in a recent campaign against diplomatic entities in Europe. The cyberespionage malware—traced to Turla APT with “medium-to-low level of confidence” based on the history of compromised victims—spread via an initial […]

Researcher Spots New Malware Claimed to be ‘Tailored for Air‑Gapped Networks’ – Tempemail – Blog – Emails

A cybersecurity researcher at ESET today published an analysis of a new piece of malware, a sample of which they spotted on the Virustotal malware scanning engine and believe the hacker behind it is likely interested in some high-value computers protected behind air‑gapped networks. Dubbed ‘Ramsay,’ the malware is still under development with two more […]

U.S Defence Warns of 3 New Malware Used by North Korean Hackers – Tempemail – Blog – Emails

Yesterday, on the 3rd anniversary of the infamous global WannaCry ransomware outbreak for which North Korea was blamed, the U.S. government released information about three new malware strains used by state-sponsored North Korean hackers. Called COPPERHEDGE, TAINTEDSCRIBE, and PEBBLEDASH, the malware variants are capable of remote reconnaissance and exfiltration of sensitive information from target systems, […]

New Malware Jumps Air-Gapped Devices by Turning Power-Supplies into Speakers – Tempemail – Blog – Emails

A researcher from Israel’s Ben Gurion University of the Negev recently demonstrated a new kind of malware that could be used to covertly steal highly sensitive data from air-gapped and audio-gapped systems using a novel acoustic quirk in power supply units that come with modern computing devices. Dubbed ‘POWER-SUPPLaY,’ the latest research builds on a […]

New Android Malware Steals Banking Passwords, Private Data and Keystrokes – Tempemail – Blog – Emails

A new type of mobile banking malware has been discovered abusing Android’s accessibility features to exfiltrate sensitive data from financial applications, read user SMS messages, and hijack SMS-based two-factor authentication codes. Called “EventBot” by Cybereason researchers, the malware is capable of targeting over 200 different financial apps, including banking, money transfer services, and crypto-currency wallets […]

A look at the ATM/PoS malware landscape from 2017-2019- Tempemail – Blog – Emails

From remote administration and jackpotting, to malware sold on the Darknet, attacks against ATMs have a long and storied history.  And, much like other areas of cybercrime, attackers only refine and grow their skillset for infecting ATM systems from year-to-year. So what does the ATM landscape look like as of 2020? Let’s take a look. […]

Aussie and US cyber spooks issue joint anti-web shell malware guidance – Security- Tempemail – Blog – Emails

The Australian Signals Directorate (ASD) and the United States Tempemail Security Agency (NSA) intelligence agencies have jointly published guidance to help organisations counter the threat from so-called web shells, or malware that is planted on servers for computer network exploitation. ASD and NSA said web shell malware is a long-standing pervasive threat that is difficult […]

COVID-Themed Lures Target SCADA Sectors With Data Stealing Malware – Tempemail – Blog – Emails

A new malware campaign has been found using coronavirus-themed lures to strike government and energy sectors in Azerbaijan with remote access trojans (RAT) capable of exfiltrating sensitive documents, keystrokes, passwords, and even images from the webcam. The targeted attacks employ Microsoft Word documents as droppers to deploy a previously unknown Python-based RAT dubbed “PoetRAT” due […]