Fake jquery campaign leads to malvertising and ad fraud schemes

Credit to Author: Jérôme Segura| Date: Thu, 27 Jun 2019 16:14:35 +0000

We look for answers in a long-running and yet mysterious malware campaign that has compromised thousands of websites to date.

Categories:

Tags:

(Read more…)

The post Fake jquery campaign leads to malvertising and ad fraud schemes appeared first on Malwarebytes Labs.

Read more

GreenFlash Sundown exploit kit expands via large malvertising campaign

Credit to Author: Jérôme Segura| Date: Wed, 26 Jun 2019 18:30:48 +0000

The GreenFlash exploit kit, which we typically saw targeting South Korean users, reaches globally with a large malvertising campaign via a popular website.

Categories:

Tags:

(Read more…)

The post GreenFlash Sundown exploit kit expands via large malvertising campaign appeared first on Malwarebytes Labs.

Read more

Magecart skimmers found on Amazon CloudFront CDN

Credit to Author: Jérôme Segura| Date: Tue, 04 Jun 2019 15:00:22 +0000

Not all breaches on Content Delivery Networks (CDNs) result in supply-chain attacks, yet, they are often a forgotten entry point for attackers to slip in malicious code, such as web skimmers.

Categories:

(Read more…)

The post Magecart skimmers found on Amazon CloudFront CDN appeared first on Malwarebytes Labs.

Read more

Hidden Bee: Let’s go down the rabbit hole

Credit to Author: hasherezade| Date: Fri, 31 May 2019 17:32:57 +0000

The complex and sophisticated custom malware, Hidden Bee, is a Chinese cryptominer that recently released an updated sample. We unpack the sample to look at the functionality of its loader and compare it against earlier versions.

Categories:

Tags:

(Read more…)

The post Hidden Bee: Let’s go down the rabbit hole appeared first on Malwarebytes Labs.

Read more

Medical industry struggles with PACS data leaks

Credit to Author: Vasilios Hioureas| Date: Fri, 24 May 2019 18:05:21 +0000

PACS servers are often used to store and transmit patient data. But how is their security implemented? We take a look at case of how poor setup can easily lead to data leaks.

Categories:

Tags:

(Read more…)

The post Medical industry struggles with PACS data leaks appeared first on Malwarebytes Labs.

Read more

Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses

Credit to Author: Pieter Arntz| Date: Wed, 15 May 2019 16:02:13 +0000

CrySIS, aka Dharma, is a ransomware family making waves over the last two months, often being used in targeted attacks through RDP access. What other tricks are up its sleeve?

Categories:

Tags:

(Read more…)

The post Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses appeared first on Malwarebytes Labs.

Read more

Exploit kits: spring 2019 review

Credit to Author: Jérôme Segura| Date: Tue, 14 May 2019 15:57:05 +0000

In this edition, we review active and unique exploit kits hitting consumers and businesses over the spring season.

Categories:

Tags:

(Read more…)

The post Exploit kits: spring 2019 review appeared first on Malwarebytes Labs.

Read more

“Funky malware format” found in Ocean Lotus sample

Credit to Author: hasherezade| Date: Fri, 19 Apr 2019 23:00:52 +0000

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Categories:

Tags:

(Read more…)

The post “Funky malware format” found in Ocean Lotus sample appeared first on Malwarebytes Labs.

Read more

Funky malware format found in Ocean Lotus sample

Credit to Author: hasherezade| Date: Fri, 19 Apr 2019 18:37:54 +0000

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Categories:

Tags:

(Read more…)

The post Funky malware format found in Ocean Lotus sample appeared first on Malwarebytes Labs.

Read more

Say hello to Baldr, a new stealer on the market

Credit to Author: Malwarebytes Labs| Date: Tue, 09 Apr 2019 15:00:13 +0000

Baldr is a new stealer that is being actively developed and distributed. Will it be able to compete in this crowded arena?

Categories:

Tags:

(Read more…)

The post Say hello to Baldr, a new stealer on the market appeared first on Malwarebytes Labs.

Read more

Plugin vulnerabilities exploited in traffic monetization schemes

Credit to Author: Jérôme Segura| Date: Tue, 26 Mar 2019 15:00:00 +0000

The latest round of vulnerable WordPress plugins leads to an active traffic monetization campaign via hacked websites.

Categories:

Tags:

(Read more…)

The post Plugin vulnerabilities exploited in traffic monetization schemes appeared first on Malwarebytes Labs.

Read more