Adobe Flash news

World latest news

Adobe Flash Player Updates Could Contain Crypto Malware

Palo Alto Networks warned this week that fake Adobe Flash Player updates carrying cryptocurrency mining malware are on the increase. In its latest blog post, the cybersecurity company reveals that it has uncovered more of the fake Flash updates during its work and research than ever before. These fake updates use pop up notifications from the official Adobe installer. If the update is run by the system user, it will add cryptocurrency mining malware like the XMRig cryptocurrency miner. It may also update the system’s Flash Player to the latest version, making it less likely for a user to notice the malware. Once embedded, cryptocurrency mining malware will run in the background of an operating system, mining cryptocurrency. The malware may or may not be identified by a user’s antivirus protection. Cryptocurrency mining malware can also be spotted if a system’s resources suddenly come under pressure, or the processor seems to be running constantly. Malware may be identified in the Windows Task Manager as an unusual program using system resources. Malware on the Increase Palo Alto Networks spotted Windows executable file names with the prefix “AdobeFlashPlayer” originating from non-Adobe cloud-based web servers. The servers belong to, or have been utilized by, the hackers. Since March 2018, Palo Alto has noticed an increase in these occurrences — peaking during the month of September. In a test of one fake update, Palo Alto found the mining malware to be mining Monero, commonly used by attackers due to its anonymous nature. McAfee Labs Threats Report for September 2018 found that though new types of all malware were less frequent so far in 2018, total occurrences of malware continued to rise. Incidences of malware have continued to increase since 2016. Protection Against Cryptocurrency Mining Malware Palo Alto Networks concluded that more knowledgeable PC users, or those running antivirus and system protection, were much less at risk than others. Regular system and antivirus updates will make it more likely for malware to be identified either before or after installation. System users should investigate further if their system suddenly slows, or appears to be using more resources than usual. If running pop-up updates, users should check their origins and file names which may indicate a non-genuine install. Cryptocurrency mining malware is just one type of malware to reward hackers in cryptocurrency. More malicious malware like Combojack and other clipboard hijackers will instead wait on a users system until they find cryptocurrency wallet addresses copied to the operating system’s clipboard. When the user tries to paste the wallet address to an exchange or for a transfer, the malware will replace the user’s wallet address with that of the hacker. Unsuspecting victims can end up transferring cryptocurrency balances directly to hackers. Cybersecurity company Carbon Black warned recently that $1.1 billion has been stolen from cryptocurrency investors — including via malware attacks — in just the first half of 2018. Have you been affected by malware plaguing Adobe? Tell us how in the comments below! Images courtesy of Bitcoinist archives, Shutterstock. The post Adobe Flash Player Updates Could Contain Crypto Malware appeared first on Bitcoinist.com.
Bitcoinist

Hackers Hides Cryptojacking Malware in Fake Adobe Flash Updates

A new research from cyber security company Palo Alto Networks reports signs of crypto-miner malware in the fake Adobe Flash updates. Although not a new hacking tactic, the latest analysis shows a significant spike in Adobe Flash updaters which can go on and hide in the background and do damage to Windows systems. Cryptojacking occurs when an attacker uses a malicious software program to gain access to another user’s computer. Instead of stealing credit card data or passwords, the hacker’s goal is to take control of the device and redirect the machine’s computing power to mine cryptocurrency. However, this latest iteration is proving to be noticeably more efficient. The implication of this unpleasant scenario is that a potential victim may not notice anything out of the ordinary while an XMRig cryptocurrency miner or other unwanted program is quietly running in the background of the victim’s Windows computer. The fake updates are delivered to victims via web pop-up windows and use authentic-looking branding to increase the chances of a download. If a victim clicks through to the download the user gets a warning about installing software from an unknown publisher — something that should be a security red flag. But if this warning is ignored, the cryptocurrency miner is secretly downloaded onto the system, with nothing in the way of prompts to give away that this action is taking place. Writing in a post exposing the scheme, Unit 42 threat intelligence analyst Brad Duncan said: “As early as August 2018, some samples impersonating Flash updates have borrowed pop-up notifications from the official Adobe installer. These fake Flash updates install unwanted programs like an XMRig cryptocurrency miner, but this malware can also update a victim’s Flash Player to the latest version.” While the number of users infected by the XMRig is unclear, the researcher said the indication of the infection in the computer is “likely taking a pretty serious performance hit right now. Hackers Hides Cryptojacking Malware in Fake Adobe Flash Updates Read More Via the Link Below Source https://news.bitzamp.com/
BitZamp

Fake Adobe Flash Updaters Distribute Monero Mining Malware

Malicious cryptocurrency mining software remains a very big threat to consumers. Palo Alto researchers note an increase in fake Adobe Flash updaters. A growing number of these fake tools tend to distribute crypto mining malware once installed. Beware of Fake Flash Updaters Despite a growing push to adopt HTML5, Adobe’s Flash Player is still very common. A lot of online video content can only be viewed by using this particular browser plugin. As is the case with any form of software, the Flash Player needs to be upgraded whenever Adobe releases a patch. That creates an opportunity for criminals to strike. Research by Palo Alto lays out a very worrisome scenario. An increase in the number of fake Adobe Flash updaters is cause for concern. That situation is only compounded when these fake tools deliver crypto mining malware payloads. Other types of malware being distributed include information stealers, and even ransomware. Most of the fake updater tools cannot be distinguished from genuine products. This is primarily because few consumers pay attention to what the genuine updater should look like. The wave of Adobe Flash Player updates over the years allows for “fake notifications” to be seen as yet another mandatory change. The displayed notifications even look similar to those Adobe pushes to users. More worryingly, recipients will also get the legitimate update in the process. This further masks any nefarious activity. Another Attempt at Malicious Monero Mining This latest effort is another example of how profitable cryptojacking is for criminals. Numerous methods of attacks have been explored over the past few months. One successful example is the attack against unprotected routers. When thousands of devices begin mining Monero, criminals can earn a relatively big paycheck in the process. The exact earnings from cryptojacking remain unclear because of Monero’s private and anonymous nature. Thankfully, the Monero community is stepping up its game. A new initiative has been launched to warn about the dangers of mining malware. Although it may fall on deaf ears a proactive approach is more than warranted at this time. This new wave of fake Adobe Flash updaters shows such warnings are direly needed. Consumers need to be made aware of these pressing problems threatening their devices. When legitimate activity can be used to mask malicious crypto mining, things are not looking positive. It is up to consumers to take the necessary precautions regarding these problems. Steering away from unknown websites remains the best course of action. Moving away from platforms relying on Adobe Flash may be an extreme measure, although it has some merit as well. What do you think about the latest cryptojacking scheme? What are you going to do to avoid it? Let us know in the comments below. Images courtesy of ShutterStock The post Fake Adobe Flash Updaters Distribute Monero Mining Malware appeared first on Live Bitcoin News.
Live Bitcoin News
More news sources

Adobe Flash news by Finrazor

Trending

Hot news

Hot world news

OKEx’s Token Will See 17x Growth in Price, Blockchain Investment Firm Forecasts

The recent popularity Initial Exchange Offerings (IEO) have been experiencing over the last few months has brought what it appears to be like a new bull run. An incredible example of success is the OKB token issued by OKEx, one of the largest cryptocurrency exchanges by trading volume in the world, which has impressed the market beyond expectations having experienced an increase in the price of 163% since launched. Shinobi Capital, a leading blockchain advisory firm and also an investor in early-stage start-ups, has released its latest evaluation report estimating that the OKB price will grow further to US$30.75, 17 times the current price, by the end of 2020. According to Jason Hill, the founding partner of Shinobi Capital:  Exchanges tokens will be the powerhouse of the development of the digital asset market and even blockchain technology. Following a series of IEOs powered by exchange tokens in H1 2019, the market is marching to the next round of bull run. OKB, as a market leader of exchange tokens, is also welcoming its own uptrend. Backed by a number of use cases and a large user base of OKEx, OKB has demonstrated a huge potential of growth. The established blockchain and cryptocurrency advisory firm is well-known for its extensive experience in start-up investment. In their evaluation report of OKB, Shinobi Capital lays out the two most important factors that will affect OKB’s future trading volume, the development of the OKChain mainnet and the overall the crypto market condition. Furthermore, the report also establishes a comparative evaluation model with other major platform tokens, including Binance Coin (BNB), EOS, and TRON (TRX). This comparative evaluation studies different aspects of each token such as trading volume, price patterns, and usage demand. The latest OKB buy-back & burn program is also taken into account to evaluate the token’s future price trend. It is expected that by the end of 2020, the price of OKB will reach USD30.75 and its market capitalization will be about USD7.068 billion. There is a significant growth lag in OKB at this stage, and the potential of price growth needs to be further released. In the next round of market recovery and boom, OKB is likely to become one of the fastest-growing assets in the market. Disclosure: This is a sponsored press release The post OKEx’s Token Will See 17x Growth in Price, Blockchain Investment Firm Forecasts appeared first on NullTX.
NullTX

Ethereum Classic presents roadmap to improve DApp development and overall infrastructure

Experts of the cryptospace are making use of DApp services to simplify the entire blockchain process. Along these lines, Ethereum Classic’s [ETC] core development team has put forth an initiative to revamp its existing ecosystem. Moving forward with an aspiration for refinement, ETC’s team is developing fresh features over blockchain technology, a development that will […] The post Ethereum Classic presents roadmap to improve DApp development and overall infrastructure appeared first on AMBCrypto.
AMBCrypto

David Marcus Grilled During Facebook's Senate Hearing

During the first of two congressional hearings regarding Facebook's Libra cryptocurrency, project lead David Marcus went as far as to say he'd be willing to take his salary in Libra after intense grilling from Senator Sherrod Brown.
Ethereum News

David Marcus Questioned Over Libra by Congress

Facebook is finally facing its reckoning as David Marcus, head of the company’s blockchain division and the leader of Libra, the venture’s new cryptocurrency, was grilled by Senate members who refuse to believe in Facebook’s allegedly noble financial plans. Libra: A Congressional Issue? Many people have a hard time believing in Facebook’s morality following the Cambridge Analytica scandal. Discovered in 2018, Facebook had allegedly been selling users’ private data for years to third parties for advertising purposes. Following Mark Zuckerberg’s Senate hearing last year, trust in Facebook has fallen to an all-time low. In many ways, this new “congressional step” for the social media conglomerate should serve as a huge learning experience. When you’re a company of Facebook’s size and you do anything to compromise the safety or privacy of your customers, you can bet it’s going to take a long time to earn their trust back. Facebook is learning this lesson in spades right now, as several Senators taking part in the hearing commented about the lack of trust they feel towards the company and its executive team. Sherrod Brown, a Democrat from the state of Ohio, commented:  Facebook has demonstrated through scandal after scandal that it doesn’t deserve our trust. We’d be crazy to give them a chance to let them experiment with people’s bank accounts. Senator Martha McSally, a Republican from Arizona, stated that Facebook is simply trying to shift gears and get people to focus on something else entirely, in this case cryptocurrency. Rather than seriously attempt to fix its reputation, it’s working to divert people’s attention with an entirely new product. She says: I don’t trust you guys. Instead of cleaning up your house, you are launching into a new business model. In addition, Facebook is also being criticized for its complete lack of coordination with policymakers. Throughout the early development of Libra, Facebook’s executive team failed to make any contacts with regulators or legal authorities to potentially understand how the cryptocurrency could better satisfy present financial laws and terms.  Trust Takes a Long Time to Build At least David Marcus isn’t lying to himself. He acknowledged during the hearing that it would likely take a while before the company can earn people’s trust well enough that they would provide their banking details. He states:  I want to make it clear that we are only at the beginning of the journey. We expect the review of Libra to be one of the most extensive ever. Facebook will not offer the Libra currency until we have addressed the concerns and receive appropriate approvals… We will not control Libra and will be one of over 100 participants that will govern over the currency. We will have to gain people’s trust if we want people to use our network over the hundreds of competing companies. The post David Marcus Questioned Over Libra by Congress appeared first on Live Bitcoin News.
Live Bitcoin News

Waves CEO Has Sold His Stake At Vostok, A Waves Blockchain Affiliated Project

Alexander Ivanov, the founder, and CEO of Waves has recently decided to fully sell his stake of Vostok, blockchain spin-off of the Waves platform. According to a recent press release, now only the GHP Group, which bought all the stakes, will be the owner of the project. The CEO also affirmed on the press release that […]
Bitcoin Exchange Guide
By continuing to browse, you agree to the use of cookies. Read Privacy Policy to know more or withdraw your consent.