Collaborate Disseminate
 |
|
| A compilation of notable security news and blog posts from the 17th of April to the 23rd. We focused on the return of Locky ransomware, Moker Trojan, and more.
Categories: Tags: binary optionsexploit kitLockyMokerMoker TrojanransomwarerecapRIG-Vtrojanweekly blog roundup |
The post A week in security (Apr 17 – Apr 23) appeared first on Malwarebytes Labs.
For a while, it appeared that Locky ransomware had completely disappeared and allowed for Cerber to take the number one spot as the most distributed piece of ransomware. But after a long absence, Locky returns in full swing.
Categories:
Cybercrime
So… Continue reading Locky ransomware is back, but we already protect against it
We finally have gotten our hands on a sample of Moker Trojan (that was discovered in 2015). This article will be a deep dive in its capabilities.
Categories:
Malware
Threat analysis
Tags: EKexploit kitmalwareMokerratRIG EKtrojan
(Read more…)
GameStop confirmed with KrebsOnSecurity that they are currently investigating reports of hackers breaching their network and siphoning customer information.
Categories:
Cybercrime
Hacking
Tags: breachcard fraudfraudgamestopgamestop breachhackingmalwa… Continue reading GameStop customer data allegedly siphoned in possible breach
 |
|
| In a previous post we made an initial analysis of a Diamond Fox bot delivered by the Nebula Exploit Kit (more about the campaign can be found here). We described the way to unpack the protection layer in order to get the core, written in Visual Basic, that can be decompiled. In this second part of…
Categories: Tags: Diamond FoxEKexploit kitNebulaNebula Exploit Kit |
The post Diamond Fox – part 2: let’s dive in the code appeared first on Malwarebytes Labs.
Continue reading Diamond Fox – part 2: let’s dive in the code
Sage is yet another ransomware that has become a common threat nowadays. Similarly to Spora, it has capabilities to encrypt files offline. The malware is actively developed and currently, we are facing outbreak of version 2.2. of this product.
Categor… Continue reading Explained: Sage ransomware
Several Saudi Arabia organizations are being targeted in a new spear phishing campaign.
Categories:
Social engineering
Tags: anti exploitphishingsaudi arabiaspear phishing
(Read more…)
The post New targeted attack against Saudi Arabia Government… Continue reading New targeted attack against Saudi Arabia Government
 |
|
| In this short series of posts, we will take a deep dive in a sample of Diamond Fox delivered by the Nebula Exploit Kit (described here). We will also make a brief comparison with the old, leaked version, in order to show the evolution of this product.
Categories: Tags: Diamond FoxGornychmalwareVisual BasicVisual Basic Decompiler |
The post Diamond Fox – part 1: introduction and unpacking appeared first on Malwarebytes Labs.
Continue reading Diamond Fox – part 1: introduction and unpacking
 |
|
| A compilation of notable security news and blog posts from the 6th to the 12th of March. This week, we look back at Ransomware, exploit kits and Mac security myths.
Categories: Tags: exploitmacransomwarescannertorweekly blog roundup |
The post A week in security (Mar 6th – Mar 12th) appeared first on Malwarebytes Labs.
Spora ransomware has joined the family of ransomware created by professionals. Take a closer look at Spora.
Categories:
Malware
Threat analysis
Tags: malwareransomwareSporaSpora Ransomware
(Read more…)
The post Explained: Spora ransomware appear… Continue reading Explained: Spora ransomware