Scranos Malware

 

 

A new rootkit-based malware family known as “Scranos” is being used in global cyberattacks as its authors grow their potential target base while adding new components and fixing bugs.

Scranos is a password- and data-stealing operation based around a rootkit driver, which has been digitally signed with a certificate believed to be stolen. When it was first detected, Scranos was localized to the Asian market; specifically, China.

Source: Dark Reading

How do you protect yourself?

Proper security measures must be in place to defend against Scranos Malware and similar threats. Having proper up-to-date endpoint and firewall security provides a cross-generational blend of threat defense techniques to protect systems from malware.

 

CVE-2019-10038

 

 

Evernote has fixed a vulnerability that could have allowed an attacker to run malicious code on a victim’s computer.  The bug could allow an attacker to remotely run malicious commands on any macOS computer with Evernote installed. Since the fix went into effect, Evernote now warns users when they click a link that opens a file on their Mac.

Source: TechCrunch

How do you protect yourself?

Update Evernote for Mac 7.10 Beta 1 and 7.9.1 GA.

 

RobbinHood Ransomware

 

 

A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entire network.

Not much is currently known about this ransomware and a sample for RobbinHood has not currently been found. We have, though, seen the ransom notes and encrypted files of various victims, which allows us to put together a picture of how this ransomware may operate.

Of particular interest is how they stress that the victim’s privacy is important to them and they will not disclose any victims who have paid.

Source: BleepingComputer

How do you protect yourself?

Proper security measures must be in place to defend against RobbinHood Ransomware and similar threats. Backing up your data and having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from malware.