Credit to Author: Jérôme Segura| Date: Fri, 02 Aug 2019 18:15:24 +0000
 | |
| In this blog, we take a look at a new exploit kit distributed via malvertising that calls itself Lord EK. Categories: Tags: EKerisexploit kitLord EKmalvertisingnjRATransomware |
The post Say hello to Lord Exploit Kit appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 30 Jul 2019 16:20:33 +0000
 | |
| In this edition of our seasonal review of exploit kits, we review active and unique EKs hitting consumers and businesses over the summer 2019 season. Categories: Tags: drive-byEKEKsexploit kitsexploitsFalloutGreenFlash SundownMagnitudeRIGSpelevoUnderminer |
The post Exploit kits: summer 2019 review appeared first on Malwarebytes Labs.
Read moreCredit to Author: hasherezade| Date: Wed, 24 Jul 2019 18:09:33 +0000
 | |
| We take an in-depth look into Phobos ransomware which threat actors distribute via RDP and look at similarities with Dharma (AKA CrySis) ransomware. Categories: Tags: crysisdharmaPhobosransomware |
The post A deep dive into Phobos ransomware appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Thu, 27 Jun 2019 16:14:35 +0000
 | |
| We look for answers in a long-running and yet mysterious malware campaign that has compromised thousands of websites to date. Categories: Tags: ad fraudAndroidAPKfake jquerymalvertisingtraffic |
The post Fake jquery campaign leads to malvertising and ad fraud schemes appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Wed, 26 Jun 2019 18:30:48 +0000
 | |
| The GreenFlash exploit kit, which we typically saw targeting South Korean users, reaches globally with a large malvertising campaign via a popular website. Categories: Tags: EKexploit kitGreenFlash Sundownmalvertisingseon ransomware |
The post GreenFlash Sundown exploit kit expands via large malvertising campaign appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 04 Jun 2019 15:00:22 +0000
 | |
| Not all breaches on Content Delivery Networks (CDNs) result in supply-chain attacks, yet, they are often a forgotten entry point for attackers to slip in malicious code, such as web skimmers. Categories: |
The post Magecart skimmers found on Amazon CloudFront CDN appeared first on Malwarebytes Labs.
Read moreCredit to Author: hasherezade| Date: Fri, 31 May 2019 17:32:57 +0000
 | |
| The complex and sophisticated custom malware, Hidden Bee, is a Chinese cryptominer that recently released an updated sample. We unpack the sample to look at the functionality of its loader and compare it against earlier versions. Categories: Tags: exploit kitsexploitshidden beeloadermelliferareverse engineeringsecurity researchUnderminerUnderminer EK |
The post Hidden Bee: Let’s go down the rabbit hole appeared first on Malwarebytes Labs.
Read moreCredit to Author: Vasilios Hioureas| Date: Fri, 24 May 2019 18:05:21 +0000
 | |
| PACS servers are often used to store and transmit patient data. But how is their security implemented? We take a look at case of how poor setup can easily lead to data leaks. Categories: Tags: %USERNAME%datadata leaksData privacydefault credentialshealthcare securitymedical industrymedical recordsPACS serverspasswordspatient dataservers |
The post Medical industry struggles with PACS data leaks appeared first on Malwarebytes Labs.
Read more