Let us present the long-term analysis of malware which was designed to steal credentials from more than 25 largest banking and payment systems in Brazil. The unique features of this banking malware include the usage of valid digital certificates, 3 years of evolution and stealing credentials from e-commerce admin pages. This feature opens doors for […]
In this blog post, we will look at the attack originating from hxxp://www.spc.or.kr/ and targeting several major Korean banks. The site, spc.or.kr, is a legitimate Korean website which belongs to Korea Software Property Right Council (SPC). After opening the site and showing its source code, we looked into the included script /js/common1.js. This script includes […]
The “Jamaican lottery scam,” also known as advanced-fee fraud, is made up of scam artists that trick people, mostly senior citizens, out of their money with a false notification of a lottery winning, inheritance or Publisher Clearing House sweepstakes prize. In these “granny scams”, the fraudsters convince the victim to send money in order to […]
Every year around tax season, we see a huge spike in tax-related social engineering attacks. Social engineering is a type of cyber attack that attempts to psychologically manipulate users, tricking them into downloading malicious software or divulging confidential information. Very often, these attacks take the form of a fraudulent email created to mimic an email Read more…
Part time job for a social media agent Do you blog, comment, respond, post, chat, like, re-tweet, add to circles, pin…? Do you monitor what’s hot on social media in your language? Do you have 2 hours a day that you can fully dedicate to avast! social media? Can you be the eyes and […]
Question of the week: A toolbar suddenly appeared in my browser. I tried to uninstall it through the Control Panel, but it’s still there. How can I get rid of it? Have you installed free software lately? Sometimes toolbars and other unwanted add-ons are included in free downloads. Most of the time, but not always, […]
Recently, news broke that the private information of a few unlucky celebrities and politicians was leaked online. The data, which includes everything from bank statements to mortgage terms and car loans, was made available on a Russian website. It’s unfortunate that well-known performers like Jay-Z, Beyonce, Britney Spears, and Kim Kardashian have had their information Read more…
The same advice parents might deliver to young drivers on their first solo journey applies to everyone who wants to navigate safely online. A special agent in our Cyber Division offered the following: – “Don’t drive in bad neighborhoods.” – “If you don’t lock your car, it’s vulnerable; if you… Read more »
Several days ago we received a complaint about javascrpt.ru. After a bit of research, we found that it tries to mimic ajax.google.com and jquery, but the code is an obfuscated/packed redirector. After removing two layers of obfuscation, we found a list of conditions checking visitors’ user Agent. From these conditions. we got a clue and […]
Many major commercial banks are now offering consumers the choice to make deposits, send money, and perform other routine tasks using a mobile app. Bank customers can now use a smartphone or tablet for basic transactions like check deposits and bill payments, making it easier to keep an eye on finances without a trip to Read more…