July 8, 2024 at 02:51PM Avast has uncovered a weakness in the DoNex ransomware’s encryption, enabling victims to recover their files for free using a decryptor. The flaw affects all past DoNex variants and can be exploited due to intermittent encryption for files larger than 1MB. Avast has released the decryptor, available for users from … Read more
February 29, 2024 at 06:45AM Cybersecurity firm Avast reported that the North Korean group Lazarus exploited a Windows zero-day vulnerability, CVE-2024-21338, using a rootkit called FudModule for privilege escalation. Microsoft patched the flaw but initially did not list it as a zero-day. The attack aimed at evading detection and included a new variant of the … Read more
February 22, 2024 at 08:04PM Avast has agreed to pay $16.5 million after the FTC accused the antivirus vendor of selling customer data to third parties. The company must destroy web browsing data transferred to its subsidiary, Jumpshot, and obtain express consent for data licensing from users. Avast disputes the allegations but has settled with … Read more
February 22, 2024 at 03:09PM The US government’s consumer protection agency is taking action against Avast for selling customer web browsing data. The Federal Trade Commission accused the company of collecting and selling data without consumer consent. Avast faces a $16.5 million fine and is ordered to stop selling browsing data. The data sold included … Read more
February 22, 2024 at 11:55AM The FTC ordered Avast to pay $16.5 million and banned it from selling users’ web browsing data. The complaint alleges Avast harvested consumers’ data without consent and mislead them about privacy protection. Avast must obtain consent before selling browsing data and delete shared data. The company’s surveillance tactics compromised privacy … Read more
January 9, 2024 at 08:22AM Security researchers, in collaboration with Cisco Talos, Avast, and the Netherlands police, have released an updated decryptor for the Babuk ransomware Tortilla variant. The decryptor, freely available online, utilizes a single private key across all victims, making it straightforward to support Tortilla victims. Organizations can access the decryptor from Avast … Read more
November 20, 2023 at 03:50PM Progress Software’s MOVEit file transfer application has been exploited by the Russian ransomware group Clop, impacting 2,620 organizations and over 77 million individuals. Avast, the antivirus company, is among the victims, with 3 million customers’ information reportedly leaked on a hacking forum. Welltok, a patient communication services provider, has also … Read more
October 31, 2023 at 04:34PM Czech cybersecurity company Avast has confirmed that its antivirus SDK mistakenly flagged the Google Android app as malware on Huawei, Vivo, and Honor smartphones. Users were warned to uninstall the app as it could secretly send SMS messages, download other apps, and steal sensitive information. Avast has resolved the issue, … Read more