Medical industry struggles with PACS data leaks

Credit to Author: Vasilios Hioureas| Date: Fri, 24 May 2019 18:05:21 +0000

PACS servers are often used to store and transmit patient data. But how is their security implemented? We take a look at case of how poor setup can easily lead to data leaks.

Categories:

Tags:

(Read more…)

The post Medical industry struggles with PACS data leaks appeared first on Malwarebytes Labs.

Read more

Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses

Credit to Author: Pieter Arntz| Date: Wed, 15 May 2019 16:02:13 +0000

CrySIS, aka Dharma, is a ransomware family making waves over the last two months, often being used in targeted attacks through RDP access. What other tricks are up its sleeve?

Categories:

Tags:

(Read more…)

The post Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses appeared first on Malwarebytes Labs.

Read more

Exploit kits: spring 2019 review

Credit to Author: Jérôme Segura| Date: Tue, 14 May 2019 15:57:05 +0000

In this edition, we review active and unique exploit kits hitting consumers and businesses over the spring season.

Categories:

Tags:

(Read more…)

The post Exploit kits: spring 2019 review appeared first on Malwarebytes Labs.

Read more

“Funky malware format” found in Ocean Lotus sample

Credit to Author: hasherezade| Date: Fri, 19 Apr 2019 23:00:52 +0000

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Categories:

Tags:

(Read more…)

The post “Funky malware format” found in Ocean Lotus sample appeared first on Malwarebytes Labs.

Read more

Funky malware format found in Ocean Lotus sample

Credit to Author: hasherezade| Date: Fri, 19 Apr 2019 18:37:54 +0000

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Categories:

Tags:

(Read more…)

The post Funky malware format found in Ocean Lotus sample appeared first on Malwarebytes Labs.

Read more

Say hello to Baldr, a new stealer on the market

Credit to Author: Malwarebytes Labs| Date: Tue, 09 Apr 2019 15:00:13 +0000

Baldr is a new stealer that is being actively developed and distributed. Will it be able to compete in this crowded arena?

Categories:

Tags:

(Read more…)

The post Say hello to Baldr, a new stealer on the market appeared first on Malwarebytes Labs.

Read more

Plugin vulnerabilities exploited in traffic monetization schemes

Credit to Author: Jérôme Segura| Date: Tue, 26 Mar 2019 15:00:00 +0000

The latest round of vulnerable WordPress plugins leads to an active traffic monetization campaign via hacked websites.

Categories:

Tags:

(Read more…)

The post Plugin vulnerabilities exploited in traffic monetization schemes appeared first on Malwarebytes Labs.

Read more

The Advanced Persistent Threat files: Lazarus Group

Credit to Author: William Tsing| Date: Tue, 12 Mar 2019 16:27:02 +0000

Lazarus Group, the threat actors likely behind the Sony breach and WannaCry outbreak, are in the news again. Here’s what you need to know about this North Korean organization, and what you should do to protect against such nation-state attacks.

Categories:

Tags:

(Read more…)

The post The Advanced Persistent Threat files: Lazarus Group appeared first on Malwarebytes Labs.

Read more

Spotlight on Troldesh ransomware, aka ‘Shade’

Credit to Author: Pieter Arntz| Date: Wed, 06 Mar 2019 16:00:00 +0000

Troldesh is ransomware that relies heavily on user interaction. Nevertheless, a recent spike in detections shows it’s been successful against businesses in the first few months of 2019.

Categories:

Tags:

(Read more…)

The post Spotlight on Troldesh ransomware, aka ‘Shade’ appeared first on Malwarebytes Labs.

Read more

New Golang brute forcer discovered amid rise in e-commerce attacks

Credit to Author: Jérôme Segura| Date: Tue, 26 Feb 2019 16:00:08 +0000

E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force.

Categories:

Tags:

(Read more…)

The post New Golang brute forcer discovered amid rise in e-commerce attacks appeared first on Malwarebytes Labs.

Read more

The Advanced Persistent Threat Files: APT1

Credit to Author: William Tsing| Date: Fri, 22 Feb 2019 17:59:13 +0000

Next up in the Advanced Persistent Threat Files: APT1, a unit of the People’s Liberation Army of China known for wide-scale and high-volume data collection on mostly English-speaking companies.

Categories:

Tags:

(Read more…)

The post The Advanced Persistent Threat Files: APT1 appeared first on Malwarebytes Labs.

Read more