A week in security (January 21 – 27)

Credit to Author: Malwarebytes Labs| Date: Mon, 28 Jan 2019 18:00:14 +0000

A roundup of last week’s security news from January 21 to 27, including Modlishka, Crytekk, PUPs, and the State of Malware report.

Categories:

Tags:

(Read more…)

The post A week in security (January 21 – 27) appeared first on Malwarebytes Labs.

Read more

Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings

Credit to Author: Jovi Umawing| Date: Wed, 21 Nov 2018 17:53:50 +0000

This isn’t the first time that Gmail, an email service used by billions, is found to have flaws. One security researcher discovered two in less than a week; another revealed a weakness that still leaves Android users open to phishing.

Categories:

Tags:

(Read more…)

The post Spoofed addresses and anonymous sending: new Gmail bugs make for easy pickings appeared first on Malwarebytes Labs.

Read more

Bot Roundup: Avalanche, Kronos, NanoCore

Credit to Author: BrianKrebs| Date: Tue, 27 Feb 2018 19:10:52 +0000

It’s been a busy few weeks in cybercrime news, justifying updates to a couple of cases we’ve been following closely at KrebsOnSecurity. In Ukraine, the alleged ringleader of the Avalanche malware spam botnet was arrested after eluding authorities in the wake of a global cybercrime crackdown there in 2016. Separately, a case that was hailed as a test of whether programmers can be held accountable for how customers use their product turned out poorly for 27-year-old programmer Taylor Huddleston, who was sentenced to almost three years in prison for making and marketing a complex spyware program.

Read more

Critical Security Fixes from Adobe, Microsoft

Credit to Author: BrianKrebs| Date: Tue, 08 Aug 2017 20:35:17 +0000

Adobe has released updates to fix at least 67 vulnerabilities in its Acrobat, Reader and Flash Player software. Separately, Microsoft today issued patches to plug 48 security holes in Windows and other Microsoft products. If you use Windows or Adobe products, it’s time once again to get your patches on. More than two dozen of the vulnerabilities fixed in today’s Windows patch bundle address “critical” flaws that can be exploited by malware or miscreants to assume complete, remote control over a vulnerable PC with little or no help from the user. According to Microsoft, none of flaws in August’s Patch Tuesday are being actively exploited in the wild, although Bleeping Computer notes that three of the bugs were publicly detailed before today’s patch release.

Read more

New Mac Malware-as-a-Service offerings

Credit to Author: Thomas Reed| Date: Wed, 14 Jun 2017 15:00:01 +0000

A couple weeks ago, two new Malware-as-a-Service (MaaS) offerings for the Mac became available. We take a closer look at these two offerings – a backdoor named MacSpy and a ransomware app named MacRansom.

Categories:

Tags:

(Read more…)

The post New Mac Malware-as-a-Service offerings appeared first on Malwarebytes Labs.

Read more

U.K. Hospitals Hit in Widespread Ransomware Attack

Credit to Author: BrianKrebs| Date: Fri, 12 May 2017 16:54:01 +0000

At least 16 hospitals in the United Kingdom are being forced to divert emergency patients today after computer systems there were infected with ransomware, a type of malicious software that encrypts a victim’s documents, images, music and other files unless the victim pays for a key to unlock them. It remains unclear exactly how this ransomware strain is being disseminated and why it appears to have spread so quickly, but there are indications the malware may be spreading to vulnerable systems through a security hole in Windows that was recently patched by Microsoft.

Read more