Electrum Bitcoin wallets under siege

Credit to Author: Malwarebytes Labs| Date: Tue, 16 Apr 2019 15:00:00 +0000

Threat actors are relentlessly phishing and attacking Electrum Bitcoin wallet users, racking up millions of dollars.

Categories:

Tags:

(Read more…)

The post Electrum Bitcoin wallets under siege appeared first on Malwarebytes Labs.

Read more

Exploit kits: fall 2018 review

Credit to Author: Jérôme Segura| Date: Wed, 24 Oct 2018 16:10:54 +0000

With a fresh exploit kit in town, the drive-by download landscape shows new signs of life in fall 2018.

Categories:

Tags:

(Read more…)

The post Exploit kits: fall 2018 review appeared first on Malwarebytes Labs.

Read more

RIG exploit kit campaign gets deep into crypto craze

Credit to Author: Jérôme Segura| Date: Tue, 09 Jan 2018 17:11:16 +0000

We take a look at a prolific campaign that is focused on the distribution of coin miners via drive-by download attacks. We started to notice larger-than-usual payloads from the RIG exploit kit around November 2017, a trend that has continued more recently via a campaign dubbed Ngay.

Categories:

Tags:

(Read more…)

The post RIG exploit kit campaign gets deep into crypto craze appeared first on Malwarebytes Labs.

Read more

LatentBot piece by piece

Credit to Author: Malwarebytes Labs| Date: Thu, 08 Jun 2017 15:00:53 +0000

LatentBot is a multi-modular Trojan written in Delphi and known to have been around since 2013. Recently, we captured and dissected a sample distributed by RIG Exploit Kit. In this post we will describe its modules by taking apart several layers of obfuscation and encryption in order to reveal their true nature.

Categories:

Tags:

(Read more…)

The post LatentBot piece by piece appeared first on Malwarebytes Labs.

Read more

Elusive Moker Trojan is back

Credit to Author: Malwarebytes Labs| Date: Fri, 21 Apr 2017 18:44:58 +0000

We finally have gotten our hands on a sample of Moker Trojan (that was discovered in 2015). This article will be a deep dive in its capabilities.

Categories:

Tags:

(Read more…)

The post Elusive Moker Trojan is back appeared first on Malwarebytes Labs.

Read more

Websites compromised in ‘Decimal IP’ campaign

Credit to Author: Jérôme Segura| Date: Wed, 29 Mar 2017 23:00:52 +0000

This URL is quite probably unlike anything you’ve ever seen before and yet still works and redirects to malware.

Categories:

Tags:

(Read more…)

The post Websites compromised in ‘Decimal IP’ campaign appeared first on Malwarebytes Labs.

Read more