Tag Archive for: Malware

Active malware campaign uses thousands of WordPress sites to infect visitors

/in

This is what happens at the network level when a browser visits an infected site.
Malwarebytes

Attackers have hijacked thousands of websites running the WordPress content management system and are using them to infect unsuspecting visitors with potent malware exploits, researchers said Thursday.

The campaign began 15 days ago, but over the past 48 hours the number of compromised sites has spiked, from about 1,000 per day on Tuesday to close to 6,000 on Thursday, Daniel Cid, CTO of security firm Sucuri, said in a blog post. The hijacked sites are being used to redirect visitors to a server hosting attack code made available through the Nuclear exploit kit, which is sold on the black market. The server tries a variety of different exploits depending on the operating system and available apps used by the visitor.

“If you think about it, the compromised websites are just means for the criminals to get access to as many endpoint desktops as they can,” Cid wrote. “What’s the easiest way to reach out to endpoints? Websites, of course.”

Read 2 remaining paragraphs | Comments

Ars Technica » Technology Lab

AirDrop Bug in Apple iOS and OSX allows Hackers to Install Malware Silently

/in

With the launch of iOS 9, Apple gave us an ultimate reason to upgrade our Apple devices to its new operating system. The latest iOS 9 includes a security update for a nasty bug that could be exploited to take full control of your iPhone or Macs, forcing …
mac hacker – read more

Hackers Stole the Biggest Number of Apple Accounts Ever with iOS Malware

/in

Think twice before jailbreaking your iPhone. A recent rash of malware has helped hackers steal over 250,000 Apple accounts, the largest theft of its kind. The malware only affects jailbroken devices, but if you get pwned, hackers can not only peek your …
mac hacker – read more

Darkode vendor of Facebook malware pleads guilty to one charge

/in

A New York man pleaded guilty Monday to one federal spam-related charge for selling access to a botnet of Facebook accounts on a now-shuttered cybercriminal forum.

Eric L. Crocker, 29, of Binghamton, New York, could face up to three years in prison and a US$ 250,000 fine, according to the U.S. Attorney’s Office for the Western District of Pennsylvania. He was charged with violating the CAN-SPAM Act, according to a court document.

Crocker was accused of selling access to a botnet he and others built of compromised Facebook accounts, according to the indictment. His customers used the access to send high volumes of spam.

To read this article in full or to leave a comment, please click here

Network World Security