Fileless Malware on the Rise

According to reports analyzing the state of the threat landscape, fileless malware incidents are up to some 265% in the first half of 2019 when compared to the same period in 2018. Fileless malware sometimes has been referred to as a zero-footprint at… Continue reading Fileless Malware on the Rise

U.S. Charges Two Iranians for SamSam Ransomware Attacks

The U.S. Department of Justice has charged two Iranian men for creating and distributing a ransomware program called SamSam that caused massive disruptions in hospitals, municipalities and public institutions over the past few years. SamSam appeared i… Continue reading U.S. Charges Two Iranians for SamSam Ransomware Attacks

Eight Individuals Indicted for Perpetrating Digital Advertising Fraud

A federal indictment charged eight individuals with perpetrating widespread digital advertising fraud that cost businesses millions of dollars. On 27 November, a federal court in Brooklyn unsealed the indictment charging Aleksandr Zhukov, Boris Timokhi… Continue reading Eight Individuals Indicted for Perpetrating Digital Advertising Fraud

Fileless malware: getting the lowdown on this insidious threat

In this series of articles, we provide an in-depth discussion of fileless malware and their related attacks. In part one, we cover a brief overview of the problems with and general features of fileless malware, laying the groundwork for technical … Continue reading Fileless malware: getting the lowdown on this insidious threat

Report: Second quarter dominated by ransomware outbreaks

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Tags:

(Read more…)

The post Report: Second quarter dominated by ransomware outbreaks appeared first on Malwarebytes Labs.

Continue reading Report: Second quarter dominated by ransomware outbreaks

return of fake UPS cannot deliver malspam with an updated nemucod ransomware and Kovter payload

The UPS failed to deliver messages have come back with a vengeance yesterday. I haven’t seen them in UK for  a while now , but it looks like the Kovter gang have taken advantage of the Petya outbreak to add to the mix. They have updated the nemucod ransomware version Continue reading → Continue reading return of fake UPS cannot deliver malspam with an updated nemucod ransomware and Kovter payload

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

The gangs spreading malware via the “cannot deliver your parcel notifications” or “check where your parcel is”  spoofing FedEx, DHL, UPS, USPS etc. have changed delivery method. The emails are still very similar to the ones we are used to seeing with this sort of subject line. USPS issue #06914074: unable to delivery parcel Parcel #006514814 shipment problem, please review USPS parcel #3150281 delivery problem Continue reading → Continue reading Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

The gangs spreading malware via the “cannot deliver your parcel notifications” or “check where your parcel is”  spoofing FedEx, DHL, UPS, USPS etc. have changed delivery method. The emails are still very similar to the ones we are used to seeing with this sort of subject line. USPS issue #06914074: unable to delivery parcel Parcel #006514814 shipment problem, please review USPS parcel #3150281 delivery problem Continue reading → Continue reading Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware