World’s biggest botnet sends 12.5 MILLION emails containing ransomware that could destroy your computer: Here’s …
Full coverage |
Full coverage |
Equifax isn’t the only credit-reporting behemoth with a website redirecting visitors to fake Adobe Flash updates. A security researcher from AV provider Malwarebytes said transunioncentroamerica.com, a TransUnion site serving people in Central America, is also sending visitors to the fraudulent updates and other types of malicious pages.
As Ars reported late Wednesday night, a portion of Equifax’s website was redirecting visitors to a page that was delivering fraudulent Adobe Flash updates. When clicked, the files infected visitors’ computers with adware that was detected by only three of 65 antivirus providers. On Thursday afternoon, Equifax officials said the mishap was the result of a third-party service Equifax was using to collect website-performance data and that the “vendor’s code running on an Equifax website was serving malicious content.” Equifax initially shut down the affected portion of its site, but the company has since restored it after removing the malicious content.
Now, Malwarebytes security researcher Jérôme Segura says he was able to repeatedly reproduce a similar chain of fraudulent redirects when he pointed his browser to the transunioncentroamerica.com site. On some occasions, the final link in the chain would push a fake Flash update. In other cases, it delivered an exploit kit that tried to infect computers with unpatched browsers or browser plugins. The attack chain remained active at the time this post was going live. Segura published this blog post shortly after this article went live on Ars.
Read 7 remaining paragraphs | Comments
Security researchers have spotted a massive malware campaign that sent out 23 million messages laden with Locky ransomware in the span of 24 hours.
David Bisson reports.
Trak.in (blog) |
Malware 'SonicSpy' Sneaks Into Google Play Store; Records Calls, Takes Photos and Sends Texts
Trak.in (blog) Google Play Store and Android are often plagued with malwares, and usually Google is quick in releasing software fix to upgrade the security in Android smartphones. WannaCry ransomware was probably the last largest threat to PCs and electronics in … |