EK – WindowsTechs.com

Purple Fox EK Adds Microsoft Exploits to Arsenal

Posted on July 6, 2020 by Lindsey O'Donnell

Two exploits for Microsoft vulnerabilities have been added to the Purple Fox EK, showing ongoing development. Continue reading Purple Fox EK Adds Microsoft Exploits to Arsenal→

Exploit kits: summer 2018 review

Posted on August 7, 2018 by Jérôme Segura

Just like the beach, the EK landscape got a little crowded this summer. Find out what we discovered in our exploit kits summer review.
Categories:

Exploits
Threat analysis

Tags: drive-by downloadsdrive-bysEKEKsexploit kitsgrandsoftGreenFlash S… Continue reading Exploit kits: summer 2018 review→

Magnitude exploit kit switches to GandCrab ransomware

Posted on April 17, 2018 by Jérôme Segura

After being faithful to its own Magniber ransomware for several months, Magnitude EK joins others to adopt GandCrab.
Categories:

Exploits
Threat analysis

Tags: EKexploit kitgandcrabMagnituderansomware

Hermes ransomware distributed to South Koreans via recent Flash zero-day

Posted on March 14, 2018 by Malwarebytes Labs

An uncommon exploit kit adds a fresh Flash Player exploit to distribute the Hermes ransomware in South Korea.
Categories:

Exploits
Threat analysis

Tags: CVE-2018-4878EKexploit kitFashHermesransomware

Drive-by download campaign targets Chinese websites, experiments with exploits

Posted on February 22, 2018 by Jérôme Segura

This custom made drive-by download attack targets some Chinese websites and their visitors while experimenting with exploits.
Categories:

Threat analysis

Tags: Chinesecoinhivedrive-byEKexploit kitexploitsFlash PlayerInternet Explorersvchost.exe… Continue reading Drive-by download campaign targets Chinese websites, experiments with exploits→

Drive-by download campaign targets Chinese websites, experiments with exploits

Posted on February 22, 2018 by Jérôme Segura

This custom made drive-by download attack targets some Chinese websites and their visitors while experimenting with exploits.
Categories:

Threat analysis

Tags: Chinesecoinhivedrive-byEKexploit kitexploitsFlash PlayerInternet Explorersvchost.exe… Continue reading Drive-by download campaign targets Chinese websites, experiments with exploits→

Disdain exploit kit served with a side of social engineering

Posted on November 10, 2017 by Jérôme Segura

Exploits may not be enough as threat actors combine them with social engineering in a new Disdain exploit kit attack method.
Categories:

Exploits
Threat analysis

Tags: DisdainEKexploit kitneutrino

Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain

Posted on August 2, 2017 by Jérôme Segura

This post shines some light on a ‘gate’ belonging to the geo-targeted Magnitude exploit kit.
Categories:
Cybercrime
Exploits
Tags: cerberEKexploit kitkoreaMagnigateMagnitudemalvertisingransomware

(Read more…)

The post Enemy at the gates: Reviewi… Continue reading Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain→

Report: Second quarter dominated by ransomware outbreaks

Posted on July 6, 2017 by Malwarebytes Labs

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Malwarebytes news

Tags: ad fraud adam kujawa Adam McNeil adware Amazon Phishing Armando Orozco astrum boaxxee breach breaches cerber cybercrime tactics & techniques cybercrime tactics and techniques dok DoublePulsar EK EternalBlue EternalPetya exploit kit Findzip fireball handbrake Jaff Jean-Philippe Taggart Jerome Segura kovter Locky Magnitude Malwarebytes malwarebytes labs Marcelo Rivero Nathan Collier NotPetya NSA nymain petya Pieter Artnz proton proton RAT Q2 2017 RIG second quarter ShadowBrokers Tamy Stewart tech support scams Thomas Reed Troldesh WannaCry WDFLoad William Tsing

Continue reading Report: Second quarter dominated by ransomware outbreaks→

AdGholas malvertising thrives in the shadows of ransomware outbreaks

Posted on July 5, 2017 by Jérôme Segura

Several large malvertising campaigns went unnoticed amidst the news of the latest ransomware outbreak.
Categories:
Cybercrime
Exploits
Tags: adgholasastrumEKexploit kitmalvertising

(Read more…)

The post AdGholas malvertising thrives in the shado… Continue reading AdGholas malvertising thrives in the shadows of ransomware outbreaks→