ESET - MySecurity Marketplace

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation

GOALS The goals of this paper are to demonstrate how dangerous ransomware has become, describe the latest techniques used by ransomware gangs, and suggest what your organization can do to reduce exposure to, and damage from, ransomware attacks. Three ransomware attack vectors are addressed in this order: remote access, email, and supply chain. RANSOMWARE — […]

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation Read More »

T1 2021 Threat Report

By execassist

Welcome to the T1 2021 issue of the ESET Threat Report! D uring the first four months of this year, the COVID-19 pandemic was still the number one news topic around the world; however, it became notably less prominent in the threat landscape. One could say “fortunately”, yet as you’ll see on the next pages,

T1 2021 Threat Report Read More »

Sex in the Digital Era – How secure are smart sex toys?

By execassist

As IoT (Internet of Things) devices continue to seep into our homes and offer an increasingly wide range of features, new concerns are beginning to arise about the security of the data processed by these devices. Though they have been subject to countless security breaches leading to the exposure of people’s login details, financial information,

Sex in the Digital Era – How secure are smart sex toys? Read More »

Threat Report Q4 2020

By execassist

Foreword Welcome to the Q4 2020 issue of the ESET Threat Report! 2020 was many things (“typical” not being one of them), and it sure feels good to be writing about it in the past tense. As if really trying to prove a point, the pandemic picked up new steam in the last quarter, bringing

Threat Report Q4 2020 Read More »

Major survey finds Australians aware of cyber threats but not fully prepared for them

By haridas_mondal

A survey by ESET Australia has found that while Australian households are generally well aware of the nature of cybersecurity threats, they are less well prepared to protect themselves from evolving threats targeting smartphones, tablets and the growing number of devices that make up the digital environment within the home. The survey also found that a significant

Major survey finds Australians aware of cyber threats but not fully prepared for them Read More »

ESET Threat Report Q2 2020

By execassist

Welcome to the Q2 2020 issue of the ESET Threat Report! With half a year passed from the outbreak of COVID-19, the world is now trying to come to terms with the new normal. But even with the initial panic settled, and many countries easing up on their lockdown restrictions, cyberattacks exploiting the pandemic showed

ESET Threat Report Q2 2020 Read More »

InvisiMole: The hidden part of the story

By execassist

EXECUTIVE SUMMARY The InvisiMole group is a threat actor operating since at least 2013, whose malware was first reported by ESET in 2018 in connection with targeted cyberespionage operations in Ukraine and Russia. We previously documented its two feature-rich backdoors, RC2CL and RC2FM, that provide extensive espionage capabilities such as recording from the victim’s webcam

InvisiMole: The hidden part of the story Read More »

Operation In(ter)ception: Targeted attacks against European aerospace and military companies

By execassist

ESET researchers have discovered an operation, with a possible link to the infamous Lazarus group, that used unconventional spearphishing and custom, multistage malware against aerospace and military companies. ESET researchers have discovered highly targeted cyberattacks that are notable for using LinkedIn-based spearphishing, employing effective tricks to stay under the radar and apparently having financial gain,

Operation In(ter)ception: Targeted attacks against European aerospace and military companies Read More »

ESET Threat Report Q1 2020

By execassist

Foreword Welcome to the first quarterly ESET Threat Report! The first quarter of 2020 was, without a doubt, defined by the outbreak of COVID-19 — now a pandemic that has put much of the world under lockdown, disrupting peoples’ lives in unprecedented ways. In the face of these developments, many businesses were forced to swiftly

ESET Threat Report Q1 2020 Read More »

Kr00k – CVE-2019-15126

By execassist

Kr00k – CVE-2019-15126 is a vulnerability that affected billions of devices, potentially causing the leak of sensitive data and opening a new attack vector for blackhats. Following the discovery of the vulnerability, ESET responsibly disclosed it to the affected chip manufacturers Broadcom and Cypress (and, initially, to Amazon). We also contacted ICASI to ensure that

Kr00k – CVE-2019-15126 Read More »