Security researchers have found a way to reverse the effects of an NSA hacking utility that deletes event logs from compromised machines.
A WordPress malware campaign that recently picked up steam last month is now using nulled (pirated) premium themes to infect new victims.
A malware author by the name of Luc1F3R is peddling a new ransomware strain called Halloware for the lowly price of $40.
A new tech support scam has been discovered that shows a fake crash on the infected computer and displays an application that pretends to be a Windows Troubleshooter. This Troubleshooter states that your computer cannot be fixed, blocks you from using Windows, and prompts you to purchase a program using PayPal to fix the "problems".
Everything else is new, and there's a lot of it. According to Bitdefender, Terdot can also operate a local MitM proxy server to sniff and reroute web traffic, can target more than just banking sites, and can also download and execute files from a remote server.
A cyber-espionage group believed to be operating out of China has been deploying malware in the past two years that disguises as control panel link (CPL) files.
A theoretical attack described by security researchers at the start of September has been integrated into a live malware distribution campaign for the first time.
Kaspersky Lab experts have found a new trojan that was deployed to aid cyber-heists of banks in Russia, Armenia, and Malaysia. Experts named the new trojan Silence.
The operators of a malware strain identified as CryptoShuffler have made at least $150,000 worth of Bitcoin by using an extremely simple scheme.
UK authorities have arrested a 21-year-old man for launching DDoS attacks on online services like Google, Skype, and Pokemon, but also for selling malware online.
Google has removed eight apps from the official Play Store that were infected with the Sockbot Android malware.
A remote access trojan (RAT) known as Hacker's Door has resurfaced in active infections after being seen the last time in 2004-2005.
Malware families evolve on a daily basis, but some updates catch your eye more than others. Necurs has just gone through one of these "interesting" updates, according to US security firm Symantec.
A Russian-speaking malware author is currently busy spreading a Monero miner hidden inside gaming mods. The crook is using different usernames to spread the malware on forums for Russian-speaking users.
A hacker or hacker group is selling a strain of ATM malware that can make ATMs spit out cash just by connecting to its USB port and running the malware.
Researchers at Akamai have identified a botnet of over 14,000 IP addresses used in malware distribution operations. The botnet is still up and running, and experts believe it will be hard to take it down because its operators are employing a clever technique called Fast Flux.
Security researchers have discovered a new ATM malware strain named ATMii that targets only ATMs running on Windows 7 and Windows Vista.