‘HoeflerText’ Popups Target Browsers With RAT and Locky Ransomware

A malware campaign utilizing bogus “HoeflerText” popup warnings is back in full swing targeting Google Chrome and Firefox browsers with Locky ransomware attacks and the NetSupport Manager RAT. Continue reading ‘HoeflerText’ Popups Target Browsers With RAT and Locky Ransomware

The numeric Tech Support Scam campaign

A new tech support scam campaign is being pushed in lieu of exploit kits. We take a look at its distribution method and how it is able to bring browsers to their knees.
Categories:
Social engineering
Threat analysis
Tags: eitestexploit kitmalvertisin… Continue reading The numeric Tech Support Scam campaign

A week in security (Apr 24 – Apr 30)

A compilation of notable security news and blog posts from the 24th of April to the 30th. We covered a lot of different subject, exploit kits, adware, Tech Support Scams, Android and Mac threats. And how to fight security fatigue.

Categories:

Tags:

(Read more…)

The post A week in security (Apr 24 – Apr 30) appeared first on Malwarebytes Labs.

Continue reading A week in security (Apr 24 – Apr 30)

A story of fonts by the EITest HoeflerText campaign

The HoeflerText campaign is known for a fake font download that delivers the Spora ransomware. But did you know it also uses special characters in the dropper’s file name?
Categories:
Cybercrime
Social engineering
Tags: chromeeitestfonthoeflertextmal… Continue reading A story of fonts by the EITest HoeflerText campaign

A look back at the Zyns iframer campaign

Behind compromised sites or malvertising, you will often find trails that can take you back years and see how infection chains evolved, or didn’t, over time.Categories: Exploits
Threat analysisTags: campaigneitestexploit kitsiframemalvertisingmalwarer… Continue reading A look back at the Zyns iframer campaign

Just For Men website serves malware

The website for Just For Men, a company that sells various products for men, had their website breached and was serving a password stealing Trojan. The malicious code embedded in the WordPress site was part of the EITest campaign and pushed the RIG exp… Continue reading Just For Men website serves malware