Malware in firmware: how to exploit a false sense of security

When it comes to cyberthreats, we in ESET-LATAM Research often see ransomware, banking trojans (especially in my home country – Brazil), botnets or worms. As a consequence, other types of dangerous malware that run inconspicuously might get less of our attention; as is the case with firmware malware or bootkits. Bootkits run before the OS … More Malware in firmware: how to exploit a false sense of security

ESET works with Google to halt dangerous malware

ESET launched Chrome Cleanup, a new scanner and cleaner for Google Chrome designed to help users browse the web safely and without interruption.  Chrome Cleanup will be available for all Google Chrome users running on Windows. As cyber-attacks become more complex and difficult to spot, browsing the web can lead users to dangerous sites which … More ESET works with Google to halt dangerous malware

DoubleLocker Android ransomware explained

Cybercriminals have developed an innovative ransomware that is based on the foundations of a particular banking Trojan to misuse Android accessibility services. Discovered by ESET malware researcher, Lukáš Štefanko, DoubleLocker, has two powerful tools for extorting money from its victims, and includes a combination that has not been seen previously in the Android ecosystem. WeLiveSecurity sat down … More DoubleLocker Android ransomware explained

DoubleLocker: Innovative Android Ransomware

ESET researchers have spotted the first-ever ransomware misusing Android accessibility services. On top of encrypting data, it also locks the device. Detected by ESET products as Android/DoubleLocker.A, the ransomware is based on the foundations of a particular banking Trojan, known for misusing accessibility services of the Android operating system. However, DoubleLocker doesn’t have the functions related … More DoubleLocker: Innovative Android Ransomware

Money-making machine: Monero-mining malware

While the world is holding its breath, wondering where notorious cybercriminal groups like Lazarus or Telebots will strike next with another destructive malware such as WannaCryptor or Petya, there are many other, less aggressive, much stealthier and often very profitable operations going on. One such operation has been going on since at least May 2017, … More Money-making machine: Monero-mining malware

Gamescom 2017: It’s all fun and games until black hats step in

ESET researchers have discovered a new sneaky malware threat named Joao, targeting gamers worldwide. Spread via hacked Aeria games offered on unofficial websites, the modular malware can download and install virtually any other malicious code on the victim’s computer. To spread their malware, the attackers behind Joao have misused massively-multiplayer online role-playing games (MMORPGs) originally published by … More Gamescom 2017: It’s all fun and games until black hats step in

Gmail now warns iOS users about suspicious links in fight against phishing threats

Should you really be clicking on those links you just received in your email? Despite all the headlines about zero-day threats and state-sponsored attacks, the rather less dramatic truth is that the majority of security incidents start with a user simply clicking on a malicious link or opening a dangerous attachment – threats that we’ve … More Gmail now warns iOS users about suspicious links in fight against phishing threats