Threat analysis – Page 2 – WindowsTechs.com

‘Hidden Bee’ miner delivered via improved drive-by download toolkit

Posted on July 26, 2018 by Malwarebytes Labs

Threat actors switch to the Hidden Bee miner as a payload for this unusual and complex drive-by download campaign.
Categories:

Exploits
Threat analysis

Tags: bootkitcryptominerdrive-by attackexploithidden beehidden bee minerMBR

New strain of Mac malware Proton found after two years

Posted on July 24, 2018 by Thomas Reed

A new variant of the Mac malware Proton, which was rampant on macOS last year, has been found dating back to at least two years ago. Learn how this could still affect your Mac today.
Categories:

Mac
Threat analysis

Tags: AppleCalistomacProton m… Continue reading New strain of Mac malware Proton found after two years→

Decision Analysis Applications in Threat Analysis Frameworks

Posted on July 20, 2018 by Tripwire Guest Authors

Cybersecurity is generally considered to be a highly reactive field where professionals struggle to keep up with new and emerging threats. As the profession works to become more human-centered and proactive, I have attempted to design a new modeling pr… Continue reading Decision Analysis Applications in Threat Analysis Frameworks→

Using Reported Phish to Hunt Threats

Posted on July 10, 2018 by Dane Boyd

Reported phishing emails are useful for plenty of reasons.
The post Using Reported Phish to Hunt Threats appeared first on Security Boulevard.
Continue reading Using Reported Phish to Hunt Threats→

Obfuscated Coinhive shortlink reveals larger mining operation

Posted on July 3, 2018 by Jérôme Segura

A web miner injected into compromised sites is just the tip of the iceberg for an infrastructure hosting malicious Windows and Linux coin miners.
Categories:

Cryptomining
Threat analysis

Tags: cnhvcoinhiveminingmoneroshortlinks

New macro-less technique to distribute malware

Posted on July 2, 2018 by Jérôme Segura

The latest macro-less technique to distribute malware via Office documents does not involve exploits. Just a little bit of social engineering.
Categories:

Threat analysis

Tags: deeplinkmacro-lessmalwareOfficesettingcontent-ms

SamSam ransomware: controlled distribution for an elusive malware

Posted on June 18, 2018 by Malwarebytes Labs

SamSam ransomware is a unique malware for its explicit human interaction on selected targets and care to erase most of its tracks.
Categories:

Malware
Threat analysis

Tags: ransomwaresamsamsamsam ransomware

Instagram story spam claims free Apple Watch

Posted on May 31, 2018 by Christopher Boyd

We take a look at Instagram story spam leading to a “free Apple Watch” giveaway on a recently compromised celebrity account.
Categories:

Social engineering
Threat analysis

Tags: Apple WatchInstagramscamsocial mediasocial networkspamsurveysurvey… Continue reading Instagram story spam claims free Apple Watch→

Malware analysis: decoding Emotet, part 1

Posted on May 25, 2018 by Vishal Thakur

In the first part of this two-part analysis of Emotet, we look at the VBA code, where you’ll learn how to recognize and discard “dead” code thrown in to complicate the analysis process.
Categories:

Malware
Threat analysis

Tags: code variationem… Continue reading Malware analysis: decoding Emotet, part 1→

New Mac cryptominer uses XMRig

Posted on May 22, 2018 by Thomas Reed

New Mac cryptominer malware is using the XMRig library to mine Monero on infected Macs.
Categories:

Mac
Threat analysis

Tags: ApplecryptominercryptominingmacMac cryptominerXMRig

(Read more…)

The post New Mac cryptominer uses XMRig ap… Continue reading New Mac cryptominer uses XMRig→