I know it’s been a while since the last one of these and we apologize for the delay, but life got in the way. Let’s try and get back on track with these though. A short post today but there will be many more to come. So off we go.
- First story, a good analysis of the Shade Encryptor ransomware by Kaspersky labs. This is a fairly nasty piece of ransowmware that also downloads additional malware in addition to encrypting your personal files.
- Read More @ https://securelist.com/analysis/publications/72087/the-shade-encryptor-a-double-threat/
- Next, D-Link seems to have made a slight “oops” by accidentally including a number of it’s private code signing keys with the publicly released firmware source code. Only one of the keys seem to be valid but a researcher was able to use the key to sign software and make it appear to be digitally signed by D-Link.
- Read More @ mobile.slashdot.org/story/15/09/17/1752210/d-link-accidentally-publishes-private-code-signing-keys
- Next, for some good news, Dutch police have arrested the alleged authors of the CoinVault ransomware. A relatively less known than some of the more prolific ransomware it is still good to know that one less piece of malicious software like this is in operation.
- Read More @ https://threatpost.com/dutch-police-arrest-alleged-coinvault-ransomware-authors/114707/
- Last story for the week is an in depth analysis by FireEye of a router implant backdoor found in Cisco devices. This is a fairly in depth analysis of how the backdoor functions and all the relevant details. Very good read.
- Read More @ https://www.fireeye.com/blog/threat-research/2015/09/synful_knock_-_acis.html