The Advanced Persistent Threat files: Lazarus Group

Credit to Author: William Tsing| Date: Tue, 12 Mar 2019 16:27:02 +0000

Lazarus Group, the threat actors likely behind the Sony breach and WannaCry outbreak, are in the news again. Here’s what you need to know about this North Korean organization, and what you should do to protect against such nation-state attacks.

Categories:

Tags:

(Read more…)

The post The Advanced Persistent Threat files: Lazarus Group appeared first on Malwarebytes Labs.

Read more

Spotlight on Troldesh ransomware, aka ‘Shade’

Credit to Author: Pieter Arntz| Date: Wed, 06 Mar 2019 16:00:00 +0000

Troldesh is ransomware that relies heavily on user interaction. Nevertheless, a recent spike in detections shows it’s been successful against businesses in the first few months of 2019.

Categories:

Tags:

(Read more…)

The post Spotlight on Troldesh ransomware, aka ‘Shade’ appeared first on Malwarebytes Labs.

Read more

New Golang brute forcer discovered amid rise in e-commerce attacks

Credit to Author: Jérôme Segura| Date: Tue, 26 Feb 2019 16:00:08 +0000

E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force.

Categories:

Tags:

(Read more…)

The post New Golang brute forcer discovered amid rise in e-commerce attacks appeared first on Malwarebytes Labs.

Read more

The Advanced Persistent Threat Files: APT1

Credit to Author: William Tsing| Date: Fri, 22 Feb 2019 17:59:13 +0000

Next up in the Advanced Persistent Threat Files: APT1, a unit of the People’s Liberation Army of China known for wide-scale and high-volume data collection on mostly English-speaking companies.

Categories:

Tags:

(Read more…)

The post The Advanced Persistent Threat Files: APT1 appeared first on Malwarebytes Labs.

Read more

Exploit kits: winter 2019 review

Credit to Author: Jérôme Segura| Date: Tue, 12 Feb 2019 16:00:00 +0000

We review the top exploit kits in this winter 2019 snapshot.

Categories:

Tags:

(Read more…)

The post Exploit kits: winter 2019 review appeared first on Malwarebytes Labs.

Read more

New critical vulnerability discovered in open-source office suites

Credit to Author: Jérôme Segura| Date: Wed, 06 Feb 2019 17:16:50 +0000

A security researcher recently published a proof of concept exploit for open-source office software LibreOffice and OpenOffice. Will this new vulnerability be used in the wild?

Categories:

Tags:

(Read more…)

The post New critical vulnerability discovered in open-source office suites appeared first on Malwarebytes Labs.

Read more

New critical vulnerability in open-source office suites

Credit to Author: Jérôme Segura| Date: Wed, 06 Feb 2019 17:16:50 +0000

A security researcher recently published a proof of concept exploit for open-source office software LibreOffice and OpenOffice. Will this new vulnerability be used in the wild?

Categories:

Tags:

(Read more…)

The post New critical vulnerability in open-source office suites appeared first on Malwarebytes Labs.

Read more

Analyzing a new stealer written in Golang

Credit to Author: hasherezade| Date: Wed, 30 Jan 2019 17:00:00 +0000

We captured a new information-stealing malware written in Golang (Go). Read up on our analysis of its functionality, as well as the tools researchers can use to unpack malware written in this relatively new programming language.

Categories:

Tags:

(Read more…)

The post Analyzing a new stealer written in Golang appeared first on Malwarebytes Labs.

Read more

Improved Fallout EK comes back after short hiatus

Credit to Author: Jérôme Segura| Date: Thu, 17 Jan 2019 19:51:27 +0000

The Fallout exploit kit is back with some noteworthy improvements.

Categories:

Tags:

(Read more…)

The post Improved Fallout EK comes back after short hiatus appeared first on Malwarebytes Labs.

Read more

Vidar and GandCrab: stealer and ransomware combo observed in the wild

Credit to Author: Jérôme Segura| Date: Fri, 04 Jan 2019 18:15:25 +0000

Threat actors combine new stealer Vidar and GandCrab ransomware in one-two punch.

Categories:

Tags:

(Read more…)

The post Vidar and GandCrab: stealer and ransomware combo observed in the wild appeared first on Malwarebytes Labs.

Read more

Underminer exploit kit improves in its latest iteration

Credit to Author: Jérôme Segura| Date: Fri, 21 Dec 2018 21:34:24 +0000

We take a look at some recent changes with the elusive Underminer exploit kit.

Categories:

Tags:

(Read more…)

The post Underminer exploit kit improves in its latest iteration appeared first on Malwarebytes Labs.

Read more