Neowin |
New Android ransomware evades antivirus programs
Neowin While this specific malware is only targets a small area, it's best to remember to download apps only from the official stores, and to stay away from installing individual APK files whenever possible. Android ransomware attacks have grown by 50% in the … |
Virus Guides (blog) |
Antivirus Programs Fooled by New Android Ransomware
Virus Guides (blog) Security researchers from Zscaler ThreatLabZ have recently found a new type of Android ransomware which cannot be detected by the antivirus programs. The new ransomware was noted in the app “OK,” which is among the most popular Russian … |
Silicon UK |
DoubleAgent Malware Seizes Control Of Antivirus Software
Silicon UK Security researchers have warned of a potentially worrying security vulnerability that could allow attackers to size control of an antivirus package running on Windows PCs. Security specialists Cybellum are therefore calling this zero–day attack … DoubleAgent: Taking Full Control Over Your Antivirus | Cybellum DoubleAgent Zero-Day Attacking Norton Antivirus DoubleAgent: Taking Full Control Over Your Antivirus | Cybellum |
A zero-day attack called Double Agent can take over antivirus software on Windows machines and turn it into malware that encrypts files for ransom, exfiltrates data or formats the hard drives.
Based on a 15-year-old feature in Windows from XP through Windows 10, the attack is effective against all 14 antivirus products tested by security vendor Cybellum – and would also be effective against pretty much every other process running on the machines.
Double Agent was discovered by Cybellum researchers and has not been seen in the wild.
“The attack was reported to all the major vendors which approved the vulnerability and are currently working on finding a solution and releasing a patch,” according to a Cybellum blog. All the vendors were notified more than 90 days ago, which is the standard length of time for responsibly disclosing vulnerabilities and giving vendors time to fix them.
To read this article in full or to leave a comment, please click here