Necurs is Back, Just in Time for Easter

April 1, 2018 12:15 pm

  After a drastic decline in the volume of spam coming from the Necurs spambot observed by Check Point Telemetry in the past month, the infamous botnet is back once again and is... Click to Read More

Tribute to Kris Kaspersky

March 29, 2018 3:03 am

  Just over a year ago one of the greatest minds in the cyber research world sadly passed away. Born in the small Russian village of Uspenskoye, Kris Kaspersky, originally named Nikolay Likhachev,... Click to Read More

Check Point Responds to AMD Flaws

March 19, 2018 6:12 am

  Following recent heated attention over possible flaws in AMD processor chips, Check Point Research was privately approached by the source of these controversial findings, CTS Labs, and was asked to verify their... Click to Read More

RottenSys: Not a Secure Wi-Fi Service At All

March 14, 2018 9:24 am

Research By: Feixiang He, Bohdan Melnykov, Elena Root   Key Findings: RottenSys, a mobile adware, has infected nearly 5 million devices since 2016. Indications show the malware could have entered earlier in the... Click to Read More

The GandCrab Ransomware Mindset

March 13, 2018 7:54 am

Research by: Ben Herzog Key Points: In 2018 even ransomware is agile. Learn about the mindset of the GandCrab ransomware developers. Take a deep dive into the inner workings of GandCrab’s operation. Get... Click to Read More

Guest Accounts Gain Full Access on Chrome RDP

March 13, 2018 1:29 am

Research By: Ofer Caspi, Benjamin Berger   Chrome Remote Desktop is an extension to the Chrome browser that allows users to remotely access another computer through Chrome browser or a Chromebook. It is... Click to Read More

Check Point Mobile Research Team Looks Back On 2017

February 18, 2018 3:06 am

  The mobile world is extremely dynamic and changes rapidly, so it’s always a little hectic to follow its lead. For this reason, we try to stop every once in a while and... Click to Read More

Jenkins Miner: One of the Biggest Mining Operations Ever Discovered

February 15, 2018 11:44 am

  The Check Point research team has discovered what could potentially become one of the biggest malicious mining operations ever seen. As seen in our previous report of the RubyMiner, these types of... Click to Read More

A New Rig Exploit Kit Campaign Dropping XMRig Miner

February 8, 2018 8:08 am

  Cryptocurrency values may be tumbling but cyber criminals are still hedging their bets on its long term returns. Check Point researchers have discovered a new malvertising campaign leading to the Rig Exploit... Click to Read More

DorkBot: An Investigation

February 4, 2018 12:06 pm

Research By: Mark Lechtik   Overview: DorkBot is a known malware that dates back to 2012. It is thought to be distributed via links on social media, instant messaging applications or infected removable... Click to Read More

Malware Displaying Porn Ads Discovered in Game Apps on Google Play

January 12, 2018 6:00 am

Research By: Elena Root & Bogdan Melnykov   Check Point Researchers have revealed a new and nasty malicious code on Google Play Store that hides itself inside around 60 game apps, several of... Click to Read More

‘RubyMiner’ Cryptominer Affects 30% of WW Networks

January 11, 2018 2:08 pm

  In the last 24 hours, 30% of networks worldwide have experienced compromise attempts by a crypto-miner targeting web servers. During that period, the lone attacker attempted to exploit 30% of all networks... Click to Read More

Many Formulas, One Calc – Exploiting a New Office Equation Vulnerability

January 9, 2018 10:38 am

Research By: Omer Gull and Netanel Ben Simon    Background A few weeks ago, a vulnerability in the Office Equation 3.0 process (EQNEDT32.EXE) was discovered by Embedi. For a couple of reasons this... Click to Read More

Detection of the Meltdown and Spectre Vulnerabilities

January 8, 2018 11:22 pm

Research By:  Erez Israel, Daniel Marx, Yoav Alon, Aviv Gafni and Ben Omelchenko    Last week, two publications regarding a pair of vulnerabilities named individually by their publishers as Meltdown and Spectre sent... Click to Read More

Malicious Flashlight Apps on Google Play

January 5, 2018 6:01 am

  Check Point researchers have detected a new type of adware roaming Google Play, the official app store of Google. The suspicious scripts override the user’s decision to disable ads showing outside of... Click to Read More