KnowBe4

Security Awareness Training Blog

Malware Blog

Covering the latest malware threats affecting software, hardware, cloud networks, etc. Keeping you informed so you can keep your users safe.

View Topics

Get Ready for the First Wave of AI Malware

Apr 10, 2019 10:41:43 AM By Stu Sjouwerman
This is an excerpt from an article in SecurityWeek by Gunter Ollmann, who is currently the CSO of Microsoft’s Cloud and AI Security division. He is a seasoned information security leader.
Continue Reading

A Powerful Malware That Tried To Blow Up A Saudi Plant Strikes Again

Apr 10, 2019 6:39:02 AM By Stu Sjouwerman
A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility.
Continue Reading

Rietspoof Malware Attack Uses Messaging Apps to Distribute Ransomware

Mar 8, 2019 7:16:33 AM By Stu Sjouwerman
Researchers at antivirus vendor Avast have identified a new malware attack that leverages Skype, Facebook Messenger, and other messaging applications.
Continue Reading

Malware Blindness in the Enterprise

Mar 7, 2019 9:56:50 AM By Stu Sjouwerman
A growing percentage of cyberattacks are using encryption to avoid detection, according to a new report by Zscaler’s ThreatLabZ researchers. Their report, summarized by Help Net Security, ...
Continue Reading

[Heads-up] 40 Percent Of Malicious URLs Found On Good Domains. YIKES!

Mar 2, 2019 11:28:15 AM By Stu Sjouwerman
Webroot revealed the results of their 2019 Threat Report, showing that tried-and-true attack methods are still going strong, but new threats emerge daily, and cybercrime is highly ...
Continue Reading

Remote Access Credentials Are the Latest Malware Attack Target

Feb 18, 2019 2:38:44 PM By Stu Sjouwerman
The latest iteration of notable banking trojan, Trickbot, now includes a password grabbing module designed to provide cybercriminals with remote access to internal systems.
Continue Reading

Online Job Offer Turns Would-Be Applicant into Unwitting Conspirator in Malware Attack

Jan 25, 2019 7:17:51 AM By Stu Sjouwerman
The context of contacting the victim via a credible website may be all that was needed to trick one job seeker into installing malware on the network of a bank.
Continue Reading

Malicious Memes Trigger Malware Functions

Dec 17, 2018 10:39:59 AM By Stu Sjouwerman
Cybercriminals are using steganography to deliver commands to malware via malicious memes, according to researchers at Trend Micro. Steganography is the art of hiding messages inside ...
Continue Reading

DNSpionage Malware Targets Domains in Lebanon and United Arab Emirates

Nov 28, 2018 5:25:02 PM By Stu Sjouwerman
A new threat actor is targeting Lebanon and United Arab Emirates (UAE) government domains, as well as a Lebanese airline company, according to Warren Mercer and Paul Rascagneres at Cisco ...
Continue Reading

Malware Targets 67 Online Brands Ahead of Black Friday

Nov 16, 2018 11:54:22 AM By Stu Sjouwerman
14 malware families have been discovered as part of an elaborate scam aimed at users shoppers of major e-commerce sites looking for pre-Black Friday deals. We’re all gearing up for some ...
Continue Reading

[Heads-up] Now In The Wild: New Super Evil Rootkit Survives Even "Nuke From Orbit" And HD Swap

Sep 30, 2018 7:56:38 AM By Stu Sjouwerman
This thing is a nightmare that escaped into daylight. The Russian GRU—aka Fancy Bear—probably was riveted reading the Wikileaks CIA Vault 7 UEFI Rootkit docs (PDF) and built one of these ...
Continue Reading

Microsoft Office Macros Remain Top Choice for Malware Delivery

Sep 20, 2018 11:58:07 AM By Stu Sjouwerman
Microsoft Office documents containing malicious macros accounted for 45 percent of malware loaders in August 2018, according to a blog post by Cofense. These macros were used to deliver a ...
Continue Reading

Bad guys use Google's Golang to cross-compile multi-platform malware

Jul 14, 2018 4:34:36 PM By Stu Sjouwerman
Here is the bad news: The use of Google's Golang (also called Go) programming language allows attackers to cross-compile malware for use on multiple platforms, making potential attacks on ...
Continue Reading

North Korea Brings Light to a “Cool” Way to Spread Malware

Jul 12, 2018 11:02:27 AM By Stu Sjouwerman
In the midst of all the political talk about the recent summit between the United States and North Korea, one particular gift caught the eye of security experts.
Continue Reading

They’re Trying to Run Malicious Code (And You’re Letting Them!)

Jul 2, 2018 10:23:00 AM By Stu Sjouwerman
According to a new threat report from security vendor eSentire, 91% of endpoint incidents involve files that won’t be defeated/blocked/removed by anti-malware solutions.
Continue Reading

Ad Network Uses Advanced Malware Technique To Conceal Cryptojacking Ads

Feb 28, 2018 4:46:51 PM By Stu Sjouwerman
I blogged a few days ago about a method to embed a crypto-mining script in a Word doc. Turns out an ad network has done an even better job! Arstechnica wrote: "Domain-name algorithms are ...
Continue Reading

KillDisk Fake Ransomware Hits Financial Firms in Latin America

Jan 16, 2018 7:13:23 AM By Stu Sjouwerman
  A new version of the KillDisk disk-wiping malware has hit companies in the financial sector in Latin America, Trend Micro reported yesterday. Just like previous versions, KillDisk ...
Continue Reading

Skeleton in the closet: 17-year old MS office flaw allows malware install when user opens file

Nov 15, 2017 11:18:35 AM By Stu Sjouwerman
Here is a new pain in the neck! Fix this one ASAP. While the world is still dealing with the threat of 'unpatched' Microsoft Office's built-in DDE feature, researchers have uncovered a ...
Continue Reading

Scary new malware hides in memory, uses DNS to communicate, and spreads through phishing

Mar 6, 2017 1:26:26 PM By Stu Sjouwerman
Cisco has a separate threat research group called Talos. They just published a report on a scary new form of malware that’s hard to detect. They called it DNSMessenger, and the malicous ...
Continue Reading

[Heads-Up] First-Ever Russian Malicious Mac Macro Discovered

Feb 12, 2017 9:31:25 AM By Stu Sjouwerman
Appleinsider reported Feb 9, 2017: "Mac malware discovered in Microsoft Word document with auto-running macro", which was the second example of malware targeting macOS users this week.   ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews