ATM malware is clearly a hot topic and a big concern nowadays for the banking industry. Our experience in this field, backed by recent incidents, shows that this rapidly growing threat is severely hitting ATM infrastructures worldwide. A recent report from Europol and TrendMicro shows also highligts that ATM malware is on the rise. The latest reported...

Joomla! is one of the most popular Content Management Systems (CMS) used to build websites, together with other CMS such as Wordpress, Drupal and Magento. This makes the life of hackers looking to compromise websites much easier, as they can simply concentrate on exploiting vulnerabilities in it, or in one of its popular plugins and extensions. Based...

Gootkit - in some places also referred to as Xswkit - is a banking malware written almost entirely in javascript. In this blog post we will go through on reverse engineering the malware to an extent where we are able to decrypt its webinject configuration file. That's being said, the file which contains further instructions about its targets and about...

The acquisition means that Sonae Investment Management (IM) now holds the leading position in Portugal, as the largest pure play cybersecurity entity, and is able to leverage significant synergies between Grupo S21sec Gestión and SysValue. Sonae Investment Management (IM) has today confirmed its acquisition of SysValue, a cybersecurity services...

A lo largo de las últimas semanas se ha hablado mucho de un nuevo ataque dirigido contra el protocolo SSL/TLS. Este ataque, conocido como DROWN, acrónimo en inglés de "Descifrado de RSA con cifrado débil y obsoleto", permite atacar y descifrar comunicaciones que utilizan incluso la versión más actual de este protocolo, TLSv1.2. A lo largo de los siguientes...

Yesterday we saw how Europol published a press release announcing the detention of approximately 700 muleteers all over Europe last February. These are key operations as they directly affect monetizing of fraud and require participation by international banks, police, security corps and companies for them to take place. We have been investigating...