Lucene search
K

10 matches found

HackRead
HackRead
added 2025/12/10 8:26 p.m.11 views

Torrent for DiCaprio’s “One Battle After Another” Movie Drops Agent Tesla

Bitdefender researchers warn that the torrent for Leonardo DiCaprio’s One Battle After Another is a trap deploying Agent Tesla malware. Learn how the fileless LOTL attack targets unsuspecting Windows users...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/29 11:3 a.m.27 views

Albabat, Kasseika, Kuiper: New Ransomware Gangs Rise with Rust and Golang

Cybersecurity researchers have detected in the wild yet another variant of the Phobos ransomware family known as Faust. Fortinet FortiGuard Labs, which detailed the latest iteration of the ransomware, said it's being propagated by means of an infection that delivers a Microsoft Excel document .XL...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/12 7:39 a.m.27 views

Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining

A new fileless attack dubbed PyLoose has been observed striking cloud workloads with the goal of delivering a cryptocurrency miner, new findings from Wiz reveal. "The attack consists of Python code that loads an XMRig Miner directly into memory using memfd, a known Linux fileless technique,"...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/30 10:15 p.m.44 views

A proxyjacking campaign is looking for vulnerable SSH servers

A researcher at Akamai has posted a blog about a worrying new trend--proxyjacking--where criminals sell your bandwidth to a third-party proxy service. To understand how proxyjacking works, well need to explain a few things. There are several legitimate services that pay users to share their surpl...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2020/10/06 3:0 p.m.33 views

APT Attack Injects Malware into Windows Error Reporting

A campaign that injects malware into the Windows Error Reporting WER service to evade detection is potentially the work of a Vietnamese APT group, researchers said. The attack, discovered on Sept. 17 by researchers at Malwarebytes Threat Intelligence Team, lures its victims with a phishing campai...

7.2AI score
Exploits0References10
Malwarebytes
Malwarebytes
added 2018/03/19 4:53 p.m.54 views

A week in security (March 12 – March 18)

Last week on Malwarebytes Labs, we took a look at the inner workings of a fileless attack, explored what happened in a zero day ransomware attack aimed at South Koreans, gave you hints and tips for avoiding cold calls, and took a deep dive into the secretive world of GrayKey. Other news The Equif...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/03/13 4:0 p.m.31 views

Hancitor: fileless attack with a DLL copy trick

This article was authored by David Sánchez, Mickaël Roger, and Jérôme Segura During the past few years, malicious spam campaigns have proven to be one of the most efficient infection vectors, in part due to a combination of social engineering and a regular number of Office vulnerabilities. The...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2017/12/07 12:52 a.m.21 views

Process Doppelgänging: New Malware Evasion Technique Works On All Windows Versions

A team of security researchers has discovered a new malware evasion technique that could help malware authors defeat most of the modern antivirus solutions and forensic tools. Dubbed Process Doppelgänging, the new fileless code injection technique takes advantage of a built-in Windows function an...

7.4AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2017/11/07 1:58 p.m.43 views

November 7, 2017 – Morning Cyber Coffee Headlines – “Election Day” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! November 7, 2017 - Headlines Carbon Black in the News: CRN Exclusive: Carbon...

6.6AI score
Exploits0
ThreatPost
ThreatPost
added 2017/03/04 8:0 a.m.8 views

New Fileless Attack Using DNS Queries to Carry Out PowerShell Commands

A unique attack called DNSMessenger uses DNS queries to carry out malicious PowerShell commands on compromised computers, a method that researchers said makes it difficult to detect that a remote access Trojan is being dropped onto targeted systems. According to experts at Cisco’s security resear...

2.2AI score
Exploits0References1
Rows per page
Query Builder