Collaborate Disseminate
Since September 19, the number two most frequently blocked website for our customers has been coinhive.com. This post will describe what CoinHive is, what it is doing, and why we are blocking it.
Categories:
Security world
Technology
Tags: ada… Continue reading Why is Malwarebytes blocking CoinHive?
 |
|
| Malwarebytes attends it-sa in Germany—Europe’s largest expo for IT security. Post written in English and German.
Categories: Tags: exhibitionit-saMalwarebytesNurembergransomware |
The post Exhibition: it-sa Nuremberg appeared first on Malwarebytes Labs.
The post Exhibition: it-sa Nuremberg appeared first on Security Boulevard.
The malware delivery trick involving updating links in Word documents is apparently gaining some traction: the latest campaign to use it likely takes the form of fake emails from the Internal Revenue Service (IRS). The fake email includes an attachment, supposedly a CP2000 notice, which is sent by the IRS when the income and/or payment information they have on file doesn’t match the information the person reported on his or her tax return. This mismatch … More → Continue reading Spoofed IRS notice delivers RAT through link updating trick
A new phishing campaign has been spotted hitting LinkedIn users via direct messages and the LinkedIn InMail feature. They are sent from legitimate LinkedIn Premium accounts that have been hijacked by the phishers, thus increasing the likelihood that recipients will trust the message and click on the link. The message The messages/emails say that the sender has just shared with the recipient a document via GoogleDoc/Drive, and offers a shortened Ow.ly link to view it. … More → Continue reading Phishers targeting LinkedIn users via hijacked accounts
Malware vaccination tricks are offered for various sorts and families of malware, but can and should we use them? What are the pros and cons? Read all about it.
Categories:
Cybercrime
Malware
Tags: canary filekeyboardlanguagemalwareMalwarebytesPieter… Continue reading Malware vaccination tricks: blue pills or red pills
Malwarebytes for Android features proprietary anti-ransomware technology Malwarebytes released Malwarebytes for Android, featuring targeted defense against mobile malware, ransomware, adware, infected applications and unauthorized surveillance. To optimize the mobility of these features, Malwarebytes for Android can be easily managed from a desktop widget. The app can also be controlled using SMS to remotely lock a device, remediate a device if it is being held ransom, and reset device pin codes. Elcomsoft Phone Breaker 7.0 extracts … More → Continue reading New infosec products of the week: August 25, 2017
This week at Black Hat, Mac malware expert Patrick Wardle will describe how he used a custom-built command and control server to analyze new spying capabilities in a variant of the FruitFly backdoor. Continue reading macOS Fruitfly Backdoor Analysis Renders New Spying Capabilities
Malwarebytes revamps their adware removal, Minerva Labs fights against ransomware, EdgeWave announces phishing detection and awareness, and more enterprise news! Enterprise News illusive networks launches its External Incident Application Program Interface RSA NetWitness SIEM Suite Updated to Improve Security Operations GuardiCore Labs To Disclose Vulnerability In VMware vSphere At Black Hat USA 2017: From vSphere […]
The post Malwarebytes, Minerva Labs, and EdgeWave – Enterprise Security Weekly #54 appeared first on Security Weekly.
Continue reading Malwarebytes, Minerva Labs, and EdgeWave – Enterprise Security Weekly #54
 |
|
| The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.
Categories: Tags: ad fraudadam kujawaAdam McNeiladwareAmazon PhishingArmando Orozcoastrumboaxxeebreachbreachescerbercybercrime tactics & techniquescybercrime tactics and techniquesdokDoublePulsarEKEternalBlueEternalPetyaexploit kitFindzipfireballhandbrakeJaffJean-Philippe TaggartJerome SegurakovterLockyMagnitudeMalwarebytesmalwarebytes labsMarcelo RiveroNathan CollierNotPetyaNSAnymainpetyaPieter Artnzprotonproton RATQ2 2017RIGsecond quarterShadowBrokersTamy Stewarttech support scamsThomas ReedTroldeshWannaCryWDFLoadWilliam Tsing |
The post Report: Second quarter dominated by ransomware outbreaks appeared first on Malwarebytes Labs.
Continue reading Report: Second quarter dominated by ransomware outbreaks
 |
|
| Since 27th June we’ve been investigating the outbreak of the new Petya-like malware armed with an infector similar to WannaCry. Since the day one, various contradicting theories started popping up. Some believed, that it is a rip-off the original Petya, others – that it is another step in its evolution. However, so far, those were just different opinions, and none of them was backed up with enough evidence. In this post, we will try to fill this gap, by making a step-by-step comparison of the current kernel and the one on which it is based (Goldeneye Petya).
Categories: Tags: attributionEternalPetyahasherezadehexeditjanusMalwarebytesNotPetyaNSApetyapsexecransomware |
The post EternalPetya – yet another stolen piece in the package? appeared first on Malwarebytes Labs.
Continue reading EternalPetya – yet another stolen piece in the package?