Watch out for a cunning attack on Polish Internet users

Recently, we had a chance to help a user who received a suspicious message. Unlike thousands of other Internet users, instead of clicking links indiscriminately, he followed his hunch and called us. It turned out that he had experienced an unknown type of attack.

Continue reading “Watch out for a cunning attack on Polish Internet users”

Technical analysis of recent attacks against Polish banks

It has been three weeks since first information about succesful attacks on Polish banks has reached our ears. It’s time to put together the technical description of how the attacks were performed. Continue reading “Technical analysis of recent attacks against Polish banks”

Hotel guests locked out of their rooms due to ransomware

Management of a hotel in Austria is considering moving back to traditional locks after their modern electronic key system got disabled by hackers demanding ransom and guests could not enter their rooms. Continue reading “Hotel guests locked out of their rooms due to ransomware”

Banking trojan, Gmail webinject, SMS message and malicious APK – all in one attack scenario

As many banks use SMS 2FA for transfer authorization, malware authors are constantly looking for new opportunities to take over control of PC infection victims’ smartphones. We have identified a new attack scenario that involves both PC and mobile devices infection by leveraging trust people have in Google services. Continue reading “Banking trojan, Gmail webinject, SMS message and malicious APK – all in one attack scenario”

New Mirai attack vector – bot exploits a recently discovered router vulnerability

Nowadays the market for IoT botnets must be really saturated. Botmasters are looking for new infection vectors to gain an advantage over competitors and a few extra Gbps of power. Yesterday one of our readers’ routers became a victim of this race. Lets look at the bot and the infection vector, which involves two vulnerabilities. Read more »