Credit to Author: Pieter Arntz| Date: Tue, 20 Apr 2021 20:55:42 +0000
 | |
| Fedir Hladyr is considered the mastermind behind the Carbanak campaign that stole $900 million from financial institutions and others. Categories: Reports Tags: anunakatmcarbanakCobaltFIN7hladyrryuk |
The post FIN7 sysadmin behind “billions in damage” gets 10 years appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Tue, 20 Apr 2021 20:13:24 +0000
 | |
| A sophisticated supply-chain attack on CodeCov appears to have given attackers access to “hundreds” of the company’s clients, and their codebases. Categories: Awareness Tags: Basher UploaderCodeCovFireEyeRead Team toolssolarwindssupply-chain attack |
The post CodeCov supply-chain compromise likened to SolarWinds attack appeared first on Malwarebytes Labs.
Read moreCredit to Author: Pieter Arntz| Date: Tue, 20 Apr 2021 16:43:18 +0000
 | |
| Youssef Sammouda is a bug bounty hunter with 100 resolved Facebook reports to his name. We interviewed him about his amazing work. Categories: HackingSecurity world Tags: bug bountyfacebookYoussef Sammouda |
The post Interview with a bug bounty hunter: Youssef Sammouda appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 19 Apr 2021 17:20:14 +0000
 | |
| A roundup of the previous week’s security news, from April 12 to 18. Categories: A week in security Tags: AIcelsius networkChloe Messdaghiddos attacksdeepfakesfbi interventionflocfood supply chainicedidname:wreckNHSomeglepodcastrussian intelligencesanbernardino shootersecurity fatiguesmb cybersecuritysocta2021Tanya JancaTroy Huntvisa scam |
The post A week in security (April 12 – 18) appeared first on Malwarebytes Labs.
Read moreCredit to Author: Threat Intelligence Team| Date: Mon, 19 Apr 2021 15:00:00 +0000
 | |
| The North Korean APT uses a clever technique to bypass security products by embedding one of its payload as a BMP image. Categories: Malwarebytes news Tags: APTBMPimagekoreaLazarusrat |
The post Lazarus APT conceals malicious code within BMP image to drop its RAT appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Fri, 16 Apr 2021 17:42:20 +0000
 | |
| A BBC investigation has highlighted the use of Virtual Cam Whores (VCWs) on Omegle by scammers. Categories: Awareness Tags: omeglesex-baiting botVCWvideo cam whores |
The post Shady scam bots trick Omegle users into nonconsensual video sex recordings appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Fri, 16 Apr 2021 14:59:38 +0000
 | |
| US intelligence and law enforcement agencies have issued a joint advisory listing 5 specific vulnerabilities being used by the SVR against the US and its allies. Categories: Malwarebytes news Tags: apt29cisacozy bearcve-2018-13379cve-2019-19781cve-2019-9670cve-2020-4006fbiNSAsolarwindssvrthe dukeswellmess |
The post Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities appeared first on Malwarebytes Labs.
Read moreCredit to Author: Christopher Boyd| Date: Fri, 16 Apr 2021 14:36:04 +0000
 | |
| Deepfakes are out there, but they aren’t where many people expected them to be. Categories: Social engineering Tags: 20202021AIbikerdeepfakedeepfakesfakefakesSocial EngineeringUS electionwatermarkingwatermarks |
The post Deepfakes were going to change everything. And then they didn’t appeared first on Malwarebytes Labs.
Read more