Asia Fresh News

Asia Fresh Stories

Archive for December 18th, 2014

TorrentLocker Cracked: Europe in the Sight of Bitcoin Requesting Ransomware

leave a comment »

-ESET researchers have analyzed a broad family of this malware and its modus operandi.

SINGAPORE /PRNewswire/ — ESET® research team from Canada has analyzed a widespread case of ransomware generally known as TorrentLocker, which started spreading in early 2014. The latest variant of the malware has infected at least 40-thousand systems in the last few months primarily targeting European countries. ESET’s security research team has prepared an extensive white paper presenting all the findings of theinvestigation and analysis of the malware behavior together with a blog post and these are now available on WeLiveSecurity.com.

ESET’s telemetry detects TorrentLocker as Win32/Filecoder.Dl, its name was derived from the registry key used by the malware to store configuration information with the fake name of “Bit Torrent Application” in the beginning of the evolution of this filecoder.

This family of ransomware encrypts documents, pictures and other files on a user’s device and requests ransom to get back access to their files.  Its typical signature is paying ransom solely in crypto-currency up to 4.081 Bitcoins (EUR1180 or US$1500). In the last campaigns, TorrentLocker has infected 40-thousand systems and encrypted more than 280 million documents in targeted countries mainly from Europe, but also addressing users in Canada, Australia and New Zealand. Out of these cases only 570 victims paid the ransom, which has earned the actors behind TorrentLocker the amount of US$585,401 in Bitcoins.

In the white paper, ESET researchers have observed and analyzed seven different ways of spreading of the TorrentLocker. According to ESET’s telemetry, first traces of this malware are dated to February 2014. The malware is constantly developing and its most advanced version has been operating since August 2014.

“We believe the actors behind TorrentLocker are the same as those behind the Hesperbot family of the banking Trojan malware,” said ESET Canada researcher, Marc-Etienne M. Leveille. “Moreover, with TorrentLocker, the attackers have been reacting to online reports by defeating Indicators of Compromise used for detection of the malware and changing the way they use Advanced Encryption Standards (AES) from Counter mode (CTR) to Cipher block chaining mode (CBC) after a method for extracting the key stream was disclosed.” This means that TorrentLocker victims can no longer recover all their documents by combining an encrypted file and its plain text to recover the key stream.

So how does the infection spread? Victims receive spam e-mail with malicious documents and are then led to open the enclosed file  attached are mostly unpaid invoices, tracking of packages or unpaid speeding tickets. The credibility of the e-mail is increased by mimicking business or government websites in the victim’s location. If the victim is from a different country, it will redirect to the Google Search page. “To fool the victims, the attackers have even inserted CAPTCHA images to create a false sense of security,” explains Leveille.

More information about the TorrentLocker ransomware is now available on ESET’s security news websiteWeLiveSecurity.com. Blog introducing the research and the malware is available here:http://www.welivesecurity.com/2014/12/16/torrentlocker-racketeering-ransomware-disassembled-by-eset-experts/. The detailed white paper is available here: http://www.welivesecurity.com/wp-content/uploads/2014/12/torrent_locker.pdf .

About ESET

ESET®, the pioneer of proactive protection and the maker of the award-winning ESET NOD32® technology, is a global provider of security solutions for businesses and consumers. For over 26 years, the Company continues to lead the industry in proactive threat detection. By obtaining the 80th VB100 award in June 2013, ESET NOD32 technology holds the record number of Virus Bulletin “VB100” Awards, and has never missed a single “In-the-Wild” worm or virus since the inception of testing in 1998. In addition, ESET NOD32 technology holds the longest consecutive string of the VB100 awards of any AV vendor. ESET has also received a number of accolades from AV-Comparatives, AV-TEST and other testing organisations and reviews. ESET NOD32® Antivirus, ESET Smart Security®, ESET Cyber Security® (solution for Mac), ESET® Mobile Security and IT Security for Business are trusted by millions of global users and are among the most recommended security solutions in the world.

ESET recently updated its two-factor authentication (2FA) application, adding a secure validation to weak and static user passwords.

This updated version of ESET’s 2FA application provides flexibility and deeper integration of 2FA into bespoke applications, making it the best cost-effective solutions for SMBs everywhere.

The Company has global headquarters in Bratislava (Slovakia), with regional distribution centers in San Diego(U.S.), Buenos Aires (Argentina), and Singapore; with offices in Jena (Germany), Prague (Czech Republic) andSao Paulo (Brazil). ESET has malware research centers in Bratislava, San Diego, Buenos Aires, Singapore,Prague, Kosice (Slovakia), Krakow (Poland), Montreal (Canada), Moscow (Russia) and an extensive partner network for more than 180 countries. More information is available from the ESET Press Center.

Source: ESET
Related Links:

Written by asiafreshnews

December 18, 2014 at 3:20 pm

Posted in Uncategorized

Stress, Fatigue and Reduced Productivity: The True Cost of Sleepless Workers Revealed

leave a comment »

-Christmas parties aren’t the only reason your employees are showing up for work bleary-eyed, as the latest sleep report reveals.
MELBOURNE, Australia, Dec. 17, 2014 /PRNewswire/ — A new GCC Insights study, complied by international employee health and performance organisation Global Corporate Challenge (GCC), reveals that 1 in every 5 workers is sleep deprived*, and that those who sleep poorly are 54% more likely to experience stress in their job.

Photo – http://photos.prnewswire.com/prnh/20141217/164834

The report also found that 93% of poor sleepers were more likely to display workplace fatigue, a common symptom of Excessive Daytime Sleepiness (EDS) — the condition proven to increase risks of absenteeism, accidents and injury in the workplace.

The results come from the health and performance leaders’ first series of GCC Insights papers, based on aggregate data drawn from over employees in 185 countries. With more than 1.5 million people having now been through the program and proven its success for some of the world’s most recognised brands, the data sample is one of the largest, most diverse of its kind.

Director of Research, FCDP — Dr. David Batman — said, “Independent research undertaken on GCC participants in the 2014 challenge demonstrates that sleep improves with increase step count in a linear fashion.”

“There are significant increases in productivity and reduction in fatigue and stress levels at work and home. Extrapolation of these results leads to an obvious conclusion that simple exercise improves sleep, and the combined result will be an increase in personal and business performance.”

While the rest and recuperation required over the festive period is, in reality, often negated by over-indulgence and family demands, the expectation is that employees return to work in January feeling re-charged and ready to perform their best.

This GCC Insights paper also provides practical recommendations for employers who recognise that their people’s mental and physical health is inextricably linked to business success — a realization that, for many, signals a need to re-think outdated, “tick-box” well-being strategies in exchange for a longer term commitment to employee health.

Glenn Riseley — Founder and President at the GCC — said, “The cost of poor sleep habits amongst employee populations has been grossly under estimated; it is having profound consequences for productivity and health. Luckily, enlightened employers are now changing their cultures so that sleep is no longer seen as a luxury but as a priority.”

The full GCC Insights report — Waking up to the sleep problem every employer is facing — is available at http://www.gettheworldmoving.com/resources.

*
Statistics derived from participants who completed GCC 2014’s pre-event, mid-event and post-event online survey.

Media enquiries

For more information, contact Glenn Riseley, Founder and President at +61 418 567 561 or glennr@gettheworldmoving.com.

About GCC INSIGHTS

GCC Insights draws upon the latest aggregated health information and outcomes shared by the 1.5 million employees that have successfully completed the GCC’s award-winning health and performance program.

These insights from 4,500 of the world’s leading companies across 185 countries, combined with the latest independent research in the fields of human performance, provide employers with new perspectives and practical recommendations to improve the health and performance of their workforce.

Source: GCC

Written by asiafreshnews

December 18, 2014 at 11:17 am

Posted in Uncategorized