Chinese Fireball malware infects over 250 million PCs worldwide

Security researchers are warning users about a dangerous new form of malware dubbed Fireball that has already infected 250 million computers worldwide.

The malware, dubbed Fireball, was discovered by CheckPoint security and is already present on 20 percent of world’s corporate networks, the company said.

According to security firm CheckPoint, Fireball takes over your internet browser and is capable of launching unauthorised tasks, like downloading files containing even more malware onto your machine.

It can also hijack your web traffic in order to generate fraudulent ad revenue. …

Fireball works by installing a plugin that boosts the advertisements belonging to Rafotech, which generates fraudulent clicks and fake web traffic.

Fireball Global Infection Rates (darker pink = more infections)

India, Brazil and Mexico are the countries with most infections of Fireball and there have also been 5.5 million infections found in the United States. It is not known how many infections are in Thailand but Check Point said there had been some instances of Fireball infecting computers in the kingdom. …

Source: Chinese Fireball malware infects 250 million PCs worldwide – here’s how to check if your PC is infected

Share

Intel chip vulnerability lets hackers easily hijack fleets of PCs

Security researchers say exploiting the vulnerability requires little technical expertise, and can result in a hacker taking full control of an affected PC.

A vulnerability in Intel chips that went undiscovered for almost a decade allows hackers to remotely gain full control over affected Windows PCs without needing a password.

The “critical”-rated bug, disclosed by Intel last week, lies in a feature of Intel’s Active Management Technology (more commonly known as just AMT), which allows IT administrators to remotely carry out maintenance and other tasks on entire fleets of computers as if they were there in person, like software updates and wiping hard drives. AMT also allows the administrator to remotely control the computer’s keyboard and mouse, even if the PC is powered off. …

Source: Intel chip vulnerability lets hackers easily hijack fleets of PCs

Share

New Word macro malware infects macOS and Windows

Another form of Microsoft Word malware that infects both macOS and Windows machines has been detected.

The malicious VBA (Visual Basic for Applications) code is buried in a Word document macro and automatically adapts its attack depending on the operating system used. Once installed, it can be used to download more payload files to your computer. …

Because the attack is disguised as an innocent Word macro, it goes undetected until it is too late. If you’ve told your computer to open macros automatically, malicious code can be executed before you have any idea it’s there. …

Source: New Word macro malware infects macOS and Windows

Share