Jérôme Segura – Page 5 – WindowsTechs.com

RoughTed: The anti ad-blocker malvertiser

Posted on May 25, 2017 by Jérôme Segura

A look at RoughTed, a purveyor of ad-blocker aware malvertising responsible for a range of scams, exploits, and malware.
Categories:
Cybercrime
Malware
Tags: ad-mavenadwareexploit kitsexploitsMagnitudemalvertisingPUPsRIGRoughTedscamstech support scam… Continue reading RoughTed: The anti ad-blocker malvertiser→

New ‘Jaff’ ransomware via Necurs asks for 2 BTC

Posted on May 11, 2017 by Jérôme Segura

The dreaded Necurs botnet delivers a new ransomware with a high ransom ask in this newest spam campaign.

Categories:

Tags: Jaff Jaff ransomware Locky Locky ransomware necurs ransomware spam

Continue reading New ‘Jaff’ ransomware via Necurs asks for 2 BTC→

A story of fonts by the EITest HoeflerText campaign

Posted on April 26, 2017 by Jérôme Segura

The HoeflerText campaign is known for a fake font download that delivers the Spora ransomware. But did you know it also uses special characters in the dropper’s file name?
Categories:
Cybercrime
Social engineering
Tags: chromeeitestfonthoeflertextmal… Continue reading A story of fonts by the EITest HoeflerText campaign→

Terror EK going ‘pro’? Not quite yet

Posted on April 26, 2017 by Jérôme Segura

A quick peek into some changes to Terror EK, an underdog exploit kit in development.

Categories:

Tags: exploit kits Sundown EK Terror EK

(Read more…)

The post Terror EK going ‘pro’? Not quite yet appeared first on Malwarebytes Labs.

Continue reading Terror EK going ‘pro’? Not quite yet→

Terror EK going ‘pro’? Not quite yet

Posted on April 26, 2017 by Jérôme Segura

A quick peek into some changes to Terror EK, an underdog exploit kit in development.

Categories:

Tags: exploit kits Sundown EK Terror EK

(Read more…)

The post Terror EK going ‘pro’? Not quite yet appeared first on Malwarebytes Labs.

Continue reading Terror EK going ‘pro’? Not quite yet→

Sundown EK gone missing, Terror EK flavours seen in active drive-by campaigns

Posted on April 11, 2017 by Jérôme Segura

With another player out at the moment, we take a look at a rebranded exploit kit in current malware campaigns.
Categories:
Exploits
Threat analysis
Tags: exploits kitsSundown EKTerror EK

(Read more…)

The post Sundown EK gone missing, Terror EK f… Continue reading Sundown EK gone missing, Terror EK flavours seen in active drive-by campaigns→

Malvertising on iOS pushes eyebrow-raising VPN app

Posted on April 6, 2017 by Jérôme Segura

A malvertising campaign on iOS is pushing a scareware page tricking Apple users into installing a free VPN app that comes with serious privacy implications.
Categories:
Social engineering
Threat analysis
Tags: AppleiOSiPhonemalvertisingmalwareMyMobil… Continue reading Malvertising on iOS pushes eyebrow-raising VPN app→

Websites compromised in ‘Decimal IP’ campaign

Posted on March 29, 2017 by Jérôme Segura

This URL is quite probably unlike anything you’ve ever seen before and yet still works and redirects to malware.

Categories:

Tags: 1760468715 EK malware RIG EK RIG exploit kit site hacks

(Read more…)

The post Websites compromised in ‘Decimal IP’ campaign appeared first on Malwarebytes Labs.

Continue reading Websites compromised in ‘Decimal IP’ campaign→

SMS phishing for the masses

Posted on March 22, 2017 by Jérôme Segura

This post looks at a recent SMS phishing scam for the RBC bank and a tool the attackers may have used to bulk send fraudulent SMS messages.
Categories:
Social engineering
Tags: Bank of MontrealBMOphishingRBCRoyal BankSendroidsms

Canada and the U.K. hit by Ramnit Trojan in new malvertising campaign

Posted on March 21, 2017 by Jérôme Segura

This new malvertising campaign on adult websites was pushing the Ramnit information stealer.
Categories:
Exploits
Tags: exoclickmalvertisingramnitRIGRIGEK

(Read more…)

The post Canada and the U.K. hit by Ramnit Trojan in new malvertising campaig… Continue reading Canada and the U.K. hit by Ramnit Trojan in new malvertising campaign→