Credit to Author: Jérôme Segura| Date: Tue, 10 Mar 2020 15:46:13 +0000
 | |
| URLs can be deceiving, but the one used to mimic CloudFlare’s Rocket Loader in the latest Magecart attack takes it to a whole new level. Categories: Tags: HTTPSJavaScriptMagecartskimmerskimming |
The post Rocket Loader skimmer impersonates CloudFlare library in clever scheme appeared first on Malwarebytes Labs.
Read moreCredit to Author: Threat Intelligence Team| Date: Fri, 28 Feb 2020 17:54:18 +0000
 | |
| We describe the latest malvertising campaign that uses Domen, an advanced social engineering toolkit. Categories: Tags: buren ransomwareDomendomen toolkitintelrapid cryptominerJavaScriptmalicious websitesmalvertisingmalvertising campaignssmoke loaderSocial EngineeringtoolkitVidarvidar stealer |
The post Domen toolkit gets back to work with new malvertising campaign appeared first on Malwarebytes Labs.
Read moreCredit to Author: Threat Intelligence Team| Date: Thu, 03 Oct 2019 15:00:00 +0000
 | |
| Malwarebytes threat intel partnered with security firm HYAS to connect the dots between Magecart Group 4 and the advanced threat group Cobalt. Categories: Tags: carbanakcolbalt groupcredit cardsdata theftecommerceFIN7group 4HYASJavaScriptMagecartskimmersthreat actorthreat actor groupthreat actors |
The post Magecart Group 4: A link with Cobalt Group? appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 20 Aug 2019 15:00:38 +0000
 | |
| This blog post details the curious case of a web skimmer encountered in a poker application. Categories: Tags: drupalJavaScriptMagecartmagentopokerskimmer |
The post Magecart criminals caught stealing with their poker face on appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 01 Jul 2019 17:02:56 +0000
 | |
| A roundup of cybersecurity news from June 24–30, including top malicious web campaigns, updates on the GreenFlash Sundown exploit, a Malwarebytes initiative to double down on stalkerware detection and awareness, and more. Categories: Tags: atm attacksatm fraudatm malware strainsATM scamAzurecryptocurrency scamsfacial recognitionfake jquerygreenflasInternet of ThingsIoTJavaScriptMassachusettesMicrosoft AzurescarewareSlackSlack outageSomervillespywarestalkerwareYandex |
The post A week in security (June 24 – 30) appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 11 Jan 2019 15:23:08 +0000
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about an adware that disguised itself as different apps and monitors mobile devices. Also, learn more about the different ransomware attacks Trend Micro has been tracking….
The post This Week in Security News: Adware and Ransomware appeared first on .
Read moreCredit to Author: Christopher Boyd| Date: Wed, 07 Nov 2018 16:00:00 +0000
 | |
| Google now requires users to enable JavaScript before logging in for extra security measures. But wait, hasn’t JavaScript been used in cyberattacks? We take a look at the impact of Google’s decision. Categories: Tags: browsersGoogleGoogle loginsJavaScriptloginloginsphishingsecurity |
The post Google logins: JavaScript now required appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Thu, 20 Sep 2018 17:42:47 +0000
 | |
| Thousands of WordPress sites have been injected with the same malicious redirection. We review the infection details and the malicious traffic leading to browser lockers. Categories: Tags: bitcoinBitcoin CodebrowlockIndicators of compromiseinjectionsJavaScripttech support scamsTSSwordpressZues |
The post Mass WordPress compromises redirect to tech support scams appeared first on Malwarebytes Labs.
Read more