Lucene search
K

214 matches found

ThreatPost
ThreatPost
added 2019/10/24 6:47 p.m.72 views

Raccoon Malware Scavenges 100,000+ Devices to Steal Data

A new information stealer, dubbed Raccoon, is rapidly gaining popularity with cybercriminals. In just a few months, researchers say the malware has already infected hundreds of thousands of devices across the world to rove through victims’ credit card data, email credentials and more. The malware...

Exploits0References8
The Hacker News
The Hacker News
added 2019/10/22 12:6 p.m.46 views

Cynet's Vulnerability Assessment Enables Organizations to Dramatically Reduce their Risk Exposure

Protection from cyberattacks begins way before attackers launch their weapons on an organization. Continuously monitoring the environment for security weaknesses and addressing such, if found, is a proven way to provide organizations with immunity to a large portion of attacks. Among the common...

7.6AI score
Exploits0
ThreatPost
ThreatPost
added 2019/10/16 12:45 p.m.76 views

Cybercrime Tool Prices Bump Up in Dark Web Markets

Prices have been rising in the last two years for longstanding tools available on the Dark Web to help bad actors commit cyber attacks and fraud, alongside newer innovations that are emerging to bolster crimes like ransomware and SIM swapping, new research has found. Keeping track of these trends...

7.3AI score
Exploits0References6
Carbon Black Blog
Carbon Black Blog
added 2019/10/02 2:44 p.m.130 views

CB TAU Threat Intelligence Notification: Nemty Ransomware

While Nemty Ransomware is distributed by various exploit kits, its behavior is similar to other variants of ransomware. It will perform “task kill” on processes to ensure the encryption of files such as databases SQL server, perform the deletion of volume shadow copies, and disable Windows...

6.8AI score
Exploits0
Trellix
Trellix
added 2019/10/02 12:0 a.m.48 views

McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service - What The Code Tells Us

McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service – What The Code Tells Us By McAfee Labs · October 2, 2019 Episode 1: What the Code Tells Us McAfee’s Advanced Threat Research team ATR observed a new ransomware family in the wild, dubbed Sodinokibi or REvil, at the end of April 201...

8.1AI score0.69833EPSS
Exploits9
ThreatPost
ThreatPost
added 2019/08/05 5:39 p.m.70 views

Puzzling Gwmndy Botnet Focuses on Low-Volume Proxy Connections

An odd botnet has been spotted targeting Fiberhome routers, in a quest to add 200 of them per day to its botnet web. That’s a low number in the world of botnets, according to 360 Netlab researchers, which observed a previously unknown malware strain called Gwmndy after the attackers’ domain name...

0.4AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/08/01 3:13 p.m.53 views

Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth

A previously undocumented proxy malware, dubbed “SystemBC,” is upping the stealth game by using SOCKS5 to evade detection. It’s being distributed by the Fallout and RIG exploit kits EKs, according to researchers. Proofpoint researchers said on Thursday that in the most recently tracked example, t...

0.4AI score
Exploits0References9
Malwarebytes
Malwarebytes
added 2019/07/30 4:20 p.m.410 views

Exploit kits: summer 2019 review

In the months since our last spring review, there has been some interesting activity from several exploit kits. While the playing field remains essentially the same with Internet Explorer and Flash Player as the most-commonly-exploited pieces of software, it is undeniable that there has been a...

10CVSS9.5AI score0.93165EPSS
Exploits50
Talos Blog
Talos Blog
added 2019/07/08 7:35 a.m.252 views

Threat Roundup for June 28 to July 5

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 28 and July 5. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

0.1AI score
Exploits0
Talos Blog
Talos Blog
added 2019/07/03 8:49 a.m.89 views

Threat Source newsletter (July 3, 2019)

Newsletter compiled by Jonathan Munshaw. Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week. We disclosed several vulnerabilities this week, including two in Simple DirectMedia Layer, and a memory corruption bug in the V8...

7.8AI score
Exploits0
Talos Blog
Talos Blog
added 2019/06/27 1:27 p.m.1912 views

Welcome Spelevo: New exploit kit full of old tricks

Nick Biasini authored this post with contributions from Caitlyn Hammond. Executive summary Exploit kits are an ever-present and often forgotten threat on the landscape today. Their popularity seemed to peak several years ago with the success and eventual downfall of some of the best compromise...

10CVSS9AI score0.87814EPSS
Exploits21
Malwarebytes
Malwarebytes
added 2019/05/20 3:57 p.m.186 views

A week in security (May 13 – 19)

Last week, Malwarebytes Labs reviewed active and unique exploit kits targeting consumers and businesses alike, reported about a flaw in WhatsApp used to target a human rights lawyer, and wrote about an important Microsoft patch that aimed to prevent a "WannaCry level" attack. We also profiled the...

9.3CVSS9.6AI score0.99913EPSS
Exploits29
Malwarebytes
Malwarebytes
added 2019/05/14 3:57 p.m.632 views

Exploit kits: spring 2019 review

Exploit kit activity remains fairly unchanged since our last winter review in terms of active distribution campaigns. But this spring edition will feature a new exploit kit and another atypical EK, in that it specifically goes after routers. The main driver behind these drive-by download attacks...

10CVSS9.3AI score0.89618EPSS
Exploits40
Talos Blog
Talos Blog
added 2019/05/07 8:47 a.m.150 views

Threat Roundup for April 26 to May 3

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 26 and May 03. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...

7.2AI score
Exploits0
Talos Blog
Talos Blog
added 2019/03/22 11:27 a.m.55 views

Threat Roundup for March 15 to March 22

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between March 15 and March 22. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

0.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/02/18 4:30 p.m.64 views

A week in security (February 11 – 17)

Last week on Malwarebytes Labs we discussed the return of the Sextortion Bitcoin scams, we gave you an early overview of the exploit kits in the winter of 2019, we talked about the destruction of VFEmail service, for consumers we discussed whether you should remove yourself from social media, for...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/02/12 4:0 p.m.752 views

Exploit kits: winter 2019 review

Active malvertising campaigns in December and the new year have kept exploit kit activity from hibernating in winter 2019. We mostly observed Fallout and RIG with the occasional, limited GrandSoft appearance for wider geo-targeting. In addition, narrowly-focused exploit kits such as Magnitude,...

10CVSS9.6AI score0.89618EPSS
Exploits40
ThreatPost
ThreatPost
added 2019/01/08 6:44 p.m.8 views

Malvertising Campaign Delivers Double Whammy of Ransomware and Info-Stealing

A multi-payload and ongoing malvertising campaign is distributing a newly discovered info-stealer as well as the GandCrab ransomware. The info-stealer is named Vidar, after the Norse god Víðarr, who was the son of Odin in mythology. According to researcher Fumik0, who discovered it in December,...

0.2AI score
Exploits0References3
ThreatPost
ThreatPost
added 2018/12/12 5:26 p.m.12 views

ThreatList: Holiday Spam, the Perfect Seasonal Gift for Criminals

Maybe holiday cheer makes people less cynical. If so, that explains why social-engineering spam tactics prove to be more effective during the festive season. New research shows that spam campaigns disguised as delivery notifications or online shopping invoices, while always a favored tactic by...

7.1AI score
Exploits0References4
Talos Blog
Talos Blog
added 2018/11/16 11:20 a.m.38 views

Threat Roundup for Nov. 9 to Nov. 16

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 09 and Nov. 16. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...

0.4AI score
Exploits0
Rows per page
Query Builder