Author: ESET Ireland

Windows zero‑day CVE‑2019‑1132 exploited in targeted attacks

July 11, 2019

ESET research discovers a zero-day exploit that takes advantage of a local privilege escalation vulnerability in Windows. In June 2019, ESET researchers identified a zero-day exploit being used in a highly targeted attack in Eastern Europe. The exploit abuses a local privilege escalation vulnerability in Microsoft Windows, specifically a NULL pointer dereference in the win32k.sys component. Once … More Windows zero‑day CVE‑2019‑1132 exploited in targeted attacks

UK’s data watchdog hands out two mega-fines for breaches

July 10, 2019

The times they have a-changed since the ICO could only slap fines worth a fraction of the current amounts. British Airways and Marriott Starwood are facing massive fines in the United Kingdom for cyber-incidents that compromised the personal data of their customers. Yesterday, the UK’s Information Commissioner’s Office (ICO) unveiled its intention to slap a fine of … More UK’s data watchdog hands out two mega-fines for breaches

Banking Malware: Countering the threats with certified (browser) protection

July 9, 2019

These days, there isn’t much that can’t be done on mobile, and that includes banking. Banking apps are quickly becoming the go to method of managing finances, and as a result, mobile banking malware targeting Android phones has become a serious and somewhat underestimated threat. For malware creators motivated by financial gain, banking apps provide … More Banking Malware: Countering the threats with certified (browser) protection

Malicious campaign targets South Korean users with backdoor-laced torrents

July 8, 2019

ESET researchers have discovered a malicious campaign distributing a backdoor via torrents, with Korean TV content used as a lure. Fans of Korean TV should be on the lookout for an ongoing campaign spreading malware via torrent sites, using South Korean movies and TV shows as a guise. The malware allows the attacker to connect … More Malicious campaign targets South Korean users with backdoor-laced torrents

Ransomware protection crucial to enterprise

July 5, 2019

Ransomware is malicious code that blocks or encrypts the contents of a device and demands a ransom to restore access to the data. Devices refer not only to mobile phones and computers but also to servers and the Internet of Things (IoT). Therefore, in case of a successful ransomware infection (and nonexistent or nonfunctional backup), the … More Ransomware protection crucial to enterprise