Lucene search
K
MalwarebytesMost viewed

4706 matches found

Malwarebytes
Malwarebytes
added 2018/11/01 3:0 p.m.91 views

Introducing Malwarebytes for Chromebook

Have you been thinking about switching over to Chromebook because you don’t need all the built-in software programs of a PC or the sleek design of a Mac? Or perhaps you’ve already made the jump because Chromebooks are so much cheaper than a Windows or Mac system. Either way, did you worry that yo...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/08/29 4:48 p.m.91 views

Fileless malware: getting the lowdown on this insidious threat

Traditionally, malware attacks as we have always known them are files written to disk in one form or another that require execution in order to carry out their malicious scope. Fileless malware, on the other hand, is intended to be memory resident only, ideally leaving no trace after its executio...

0.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/05/10 5:0 a.m.90 views

Update now! May 2023 Patch Tuesday tackles three zero-days

Its that time of the month again: We're looking at May's Patch Tuesday roundup. Microsoft has released its monthly update, and while the total number of patched vulnerabilities is relatively low at 38, among them are three zero-day vulnerabilities. Microsoft classifies a vulnerability as a zero-d...

7.4AI score0.94683EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2023/03/22 2:0 p.m.90 views

New Kritec Magecart skimmer found on Magento stores

Threat actors often compete for the same resources, and this couldn't be further from the truth when it comes to website compromises. After all, if a vulnerability exists one can expect that it will be exploited more than once. In the past, we have seen such occurrences with Magecart threat actor...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/01/05 9:0 a.m.90 views

Google patches 60 vulnerabilities in first Android update of 2023

Google has published its first security bulletin of 2023 with details of security vulnerabilities affecting Android devices. Patch level 2023-01-01 includes 20 issues and patch level 2023-01-05 includes fixes for another 40 issues. The Android security patch level refers to a monthly manifest of...

8.9AI score0.03763EPSS
Exploits4
Malwarebytes
Malwarebytes
added 2022/09/14 11:0 a.m.90 views

WPGateway WordPress plugin vulnerability could allow full site takeover

Theres been a few WordPress plugin vulnerabilities in the wild recently, and today we have another one to add to the list. Sometimes when word breaks of a WordPress plugin issue, a fix is already available and all you have to do is perform an update. On other occasions, the attack is live and out...

9.8AI score0.08762EPSS
Exploits2
Malwarebytes
Malwarebytes
added 2022/06/08 1:43 p.m.90 views

5 Linux malware families SMBs should protect themselves against

There’s no shortage of reasons why an SMB might use Linux to run their business: There are plenty of distros to choose from, it’s generally free, and perhaps above all — it’s secure. The common wisdom goes that Linux malware is rare, and for the most part this is true. Thanks to its built-in...

7.5CVSS0.4AI score0.78395EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2021/08/11 4:8 p.m.90 views

If a QR code leads you to a Bitcoin ATM at a gas station, it’s a scam

Rogue QR code antics have been back in the news recently. They’re not exactly a mainstay of fakery, but they do tend to enjoy small waves of popularity as events shaped by the real world remind everyone they still exist. The most notable example where this is concerned is of course the pandemic...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/05/31 10:34 a.m.90 views

The slow trend away from facial recognition technology

It’s been a busy few weeks for facial recognition technology. Its oft-maligned abilities frequently wind up in tales of privacy invasion, or false positives, or dubious data retention. In fact, it’s not uncommon to see big organisations backing away from how they expect to use it, or indeed deplo...

Exploits0
Malwarebytes
Malwarebytes
added 2019/02/13 4:54 p.m.90 views

Businesses: It’s time to implement an anti-phishing plan

Businesses: phishers aren’t just coming for you. They’re coming for your employees and your customers, too. Phishing attacks are on the rise this year, thanks in part to massive Emotet and TrickBot campaigns, which make use of phishing emails to deliver their payloads. If you don't already have o...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/10/05 3:0 p.m.90 views

Fileless malware: part deux

In part one of this series, we focused on an introduction to the concepts fileless malware, providing examples of the problems that we in the security industry face when dealing with these types of attacks. In part two, I will be walking through a few demonstrations of fileless malware attacks th...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/04/23 2:0 p.m.89 views

SUPERNOVA malware discovered on SolarWinds Orion server

The Cybersecurity and Infrastructure Security Agency CISA has reported finding the SUPERNOVA web shell collecting credentials on a SolarWinds Orion server. These observations were made during an incident response to an Advanced Persistent Threat APT actor’s year-long compromise of an enterprise...

7.5CVSS1.4AI score0.9198EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2021/02/22 11:37 a.m.89 views

A week in security (February 15 – February 21)

Last week on Malwarebytes Labs, the spotlight fell on the State of Malware 2021 report, wherein we have seen cyberthreats evolve. We also touched on ransomware, such as Egregor and a tactic known as Remote Desktop Protocol RDP brute forcing that has long been part of the ransomware operators...

1.3AI score0.01515EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2020/07/28 4:55 p.m.89 views

TikTok is being discouraged and the app may be banned

In recent news retail giant Amazon sent a memo to employees telling them to delete the popular social media app TikTok from their phones. In the memo it stated that the app would pose a security risk without going into details. Later the memo was withdrawn without an explanation except that it wa...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/07/24 4:38 p.m.89 views

FaceApp scares point to larger data collection problems

Last week, if you thumbed your way through Facebook, Instagram, and Twitter, you likely saw altered photos of your friends with a few extra decades written onto their faces—wrinkles added, skin sagged, hair bereft of color. Has 2019 really been that long? Not really. The photos are the work of...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/05/15 4:2 p.m.89 views

Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses

CrySIS, aka Dharma, is a family of ransomware that has been evolving since 2006. We have noticed that this ransomware has become increasingly active lately, increasing by a margin of 148 percent from February until April 2019. The uptick in detections may be due to CrySIS' effective use of multip...

7.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/03/29 3:0 p.m.89 views

Awakening the beast: BatMobi adware

On February 12, a patron of the Malwarebytes Forum alerted us of an issue with ad redirects that seemed to come out of nowhere. An outcry from other commenters filled the forum thread, all experiencing the same redirects to the same exact websites. Our web protection team traced the offending...

1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/02/20 4:0 p.m.89 views

Good bots, bad bots: friend or foe?

One of the most talked about technologies online today is the ubiquitous bot. Simultaneously elusive yet also responsible for all of civilisation’s woes, bots are a hot topic of contention. If we went purely by news reports, we’d assume all bots everywhere are evil, and out to get us or just...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/01/31 4:44 p.m.89 views

Apple pulls Facebook enterprise certificate

It’s been an astonishing few days for Facebook. They've seen both an app and their enterprise certificate removed and revoked with big consequences. What happened? Apple issue enterprise certificates to organizations with which they can create internal apps. Those apps don’t end up released on th...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/01/23 8:1 a.m.89 views

2019 State of Malware report: Trojans and cryptominers dominate threat landscape

Each quarter, the Malwarebytes Labs team gathers to share intel, statistics, and analysis of the tactics and techniques made popular by cybercriminals over the previous three months. At the end of the year, we synthesize this data into one all-encompassing report—the State of Malware report—that...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/09/14 3:0 p.m.89 views

Is two-factor authentication (2FA) as secure as it seems?

Two-factor authentication 2FA was invented to add an extra layer of security to the—now considered old-fashioned and insecure—simple login procedure of entering a username and password. One of the most well-known examples of 2FA is when you try to log into a familiar website from a different...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/02/28 4:45 p.m.89 views

RIG malvertising campaign uses cryptocurrency theme as decoy

For a couple of weeks, we have been observing a malvertising campaign that uses decoy websites to redirect users to the RIG exploit kit. Those sites, whose theme is about cryptocurrencies, were all registered recently and are swapped after a few days of use. The initial redirection starts off fro...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/08/02 9:54 p.m.89 views

Black Hat USA 2017 Recap

What do you get when you put hackers, gambling, and dogs together? Black Hat USA 2017 …and a random zoo conference happening next door. Last week, we wrapped up another successful trip to Las Vegas for Black Hat. For those of you who couldn’t make it or had too much Vegas fun and need a reminder ...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/04/07 2:44 p.m.88 views

SAP warns of malicious activity targeting unpatched systems

A timely warning to keep systems patched has appeared, via a jointly-released report from Onapsis and SAP. The report details how threat actors are “targeting and potentially exploiting unprotected mission-critical SAP applications”. Some of the vulnerabilities used were weaponised fewer than 72...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/09/11 3:0 p.m.88 views

The informed voter’s guide to election cyberthreats

Singapore held its most recent general election on July 10 2020, and although they used the electoral system called first-past-the-post FPTP, a scheme favored by the US, UK, and most English-speaking countries, the road leading to Election Day was not without challenges and obstacles. While all...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/12/05 4:0 p.m.88 views

Report: Organizations remain vulnerable to increasing insider threats

The latest data breach at Capital One is a noteworthy incident not because it affected over 100 million customer records, 140,000 Social Security numbers SSNs, and 80,000 linked bank accounts. Nor was it special because the hack was the result of a vulnerable firewall misconfiguration. Many still...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/06/03 4:47 p.m.88 views

Leaks and breaches: a roundup

It’s time for one of our semi-regular breach/data exposure roundup blogs, as the last few days have brought us a few monsters. If you use any of the below sites, or if you think some of your data has been sitting around exposed, we’ll hopefully give you a better idea of what the issue is. Seeing ...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/03/07 4:0 p.m.88 views

The not-so-definitive guide to cybersecurity and data privacy laws

US cybersecurity and data privacy laws are, to put it lightly, a mess. Years of piecemeal legislation, Supreme Court decisions, and government surveillance crises, along with repeated corporate failures to protect user data, have created a legal landscape that is, for the American public and...

6.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/12/24 6:56 p.m.88 views

A week in security (December 17 – 23)

Last week on Labs we looked at Fuchsia OS as a possible alternative for Android, explained all the reasons why cybercriminals want to hack your phone, discussed a flaw in Twitter form that may have been abused by nation states, gave you a Christmas tech scams roundup, revealed why many online...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/11/30 7:17 p.m.88 views

Marriott breach impacts 500 million customers: here’s what to do about it

Today Marriott disclosed a large-scale data breach impacting up to 500 million customers who have stayed at a Starwood-branded hotel within the last four years. While details of the breach are still sparse, Marriott stated that there was unauthorized access to a database tied to customer...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/01/31 10:28 p.m.88 views

Scarab ransomware: new variant changes tactics

The Scarab ransomware was discovered in June 2017. Since then, several variants have been created and discovered in the wild. The most popular or widespread versions were distributed via the Necurs botnet and initially written in Visual C compiled. However, after unpacking, we've found that anoth...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/01/26 10:0 p.m.88 views

Plugging a virtual leak: insecure VR app exposes customer data

I've been giving talks on the possible problems raised by virtual/augmented/mixed reality for a while now, and sure enough, we have what may be one of the first potentially major security issues thrown up by an in-the-wild application. Until a recent fix was applied, users of the pornography app...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/09/06 3:0 p.m.88 views

Facebook worries: I didn’t post that

It is my assumption that most Facebook users don’t look at their own profile often. With your own profile, I mean the timeline that shows up when you click your own name or avatar in the Facebook menu. That’s because we think we know exactly what is posted there, so why bother to look at it? Afte...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/09/27 11:30 a.m.87 views

Flaw in some ManageEngine apps is being actively exploited, says CISA

CISA the Cybersecurity and Infrastructure Security Agency recently added CVE-2022-35405--a remote code executionRCE vulnerability affecting Zoho ManageEngine PAM360 versions 5500 and earlier, Password Manager Pro versions 12100 and earlier, and Access Manager Plus versions 4302 and earlier--to it...

1.8AI score0.9994EPSS
Exploits5
Malwarebytes
Malwarebytes
added 2021/07/23 6:6 p.m.87 views

CNA legal filings lift the curtain on a Phoenix CryptoLocker ransomware attack

Two months after fully restoring its systems, CNA Financial, the leading US insurance company that was attacked by a group using Phoenix CryptoLocker ransomware, issued a legal notice of an information security incident to the Consumer Protection Bureau in New Hampshire. You may recall that Phoen...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/06/21 8:5 a.m.87 views

Want to stop ransomware attacks? Send the cybercriminals to jail, says Brian Honan: Lock and Code S02E11

Ransomware attacks are on a different scale this year, with major attacks not just dismantling the business and management of Colonial Pipeline in the US, the Health Service Executive in Ireland, and the meatpacker JBS in Australia, but also disrupting peoples access to gasoline, healthcare,...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/03/06 2:34 p.m.87 views

Will Google’s Privacy Sandbox take the bite out of tracking cookies?

Third-party cookies have been the lynchpin of online advertising for many years. Plans to phase cookies out forever continue to run at a steady pace, with Google in the driving seat. In 2019, it announced its vision for a “Privacy Sandbox”. The building blocks for this were essentially: 1. Most...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/04/27 3:0 p.m.87 views

Lock and Code S1Ep5: Mythbusting and understanding VPNs with JP Taggart

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to JP Taggart, senior security researcher at Malwarebytes, about VPNs—debunking their myths, explaining their actual capabilities, and providing some advice...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/11/07 9:49 p.m.87 views

Not us, YOU: vendor email compromise explained

Silent Starling, an online organized criminal group hailing from West Africa, seem to have reminded SMBs and enterprises alike the perils of business email compromise BEC scams once more. This time, they've advanced BEC into a more potent modality by widening the scope of its potential targets an...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/03/05 1:0 p.m.87 views

Labs survey finds privacy concerns, distrust of social media rampant with all age groups

Before Cambridge Analytica made Facebook an unwilling accomplice to a scandal by appropriating and misusing more than 50 million users’ data, the public was already living in relative unease over the privacy of their information online. The Cambridge Analytica incident, along with other, seemingl...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/01/15 5:16 p.m.87 views

How the government shutdown is influencing cybersecurity jobs

As of this writing, the government shutdown of 2019 is the longest ever in America. The only good news about this situation is that, with each passing day, a new group of people in the country seems to rediscover just how essential government services are, now that they're unavailable. The next...

Exploits0
Malwarebytes
Malwarebytes
added 2018/12/27 5:34 p.m.87 views

Using the blockchain to create secure backups

“Oh no! I’ve got a ransomware notice on my workstation. How did this happen?” “Let’s figure that out later. First, apply the backup from a few minutes ago, so we can continue to work.” Now that wasn't so painful, was it? Having a rollback solution or a recent backup could make this ideal post...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/11/15 8:12 p.m.87 views

Compromising vital infrastructure: air traffic control

While most of us know that flying is the safest mode of transport, we still feel that sigh of relief when the plane has made its landing on the runway and we can text our loved ones that we have arrived safe and sound. Accidents may be rare, but they're often shocking and horrific and accompanied...

0.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/08/01 5:0 p.m.86 views

Millions of Arris routers are vulnerable to path traversal attacks

Security researcher Derek Abdine has published an advisory about vulnerabilities that exist in the MIT-licensed muhttpd web server. This web server is present in Arris firmware which can be found in several router models. muhttpd web server muhttpd mu HTTP deamon is a simple but complete web serv...

7.5CVSS9.7AI score0.12001EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2020/12/16 7:42 p.m.86 views

Likely lead generation scam targets potential Malwarebytes MSP partners

Recently, Malwarebytes discovered a potential lead generation scam targeting companies that are interested in our Malwarebtyes Managed Service Provider MSP Program. In the scam, an individual who used the name “Jenny” aggressively contacted potential MSP partners claiming to represent Malwarebyte...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/05/27 7:3 a.m.86 views

A week in security (May 20 – 26)

Last week on Malwarebytes Labs, we took a look at a skimmer pretending to be a payment service provider, gave an overview of what riskware is, took a deep dive into concerns about PACS leaks, and dug around in the land of “These Governments said fix it…hurry up”. Other cybersecurity news Changes...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/02/25 4:52 p.m.86 views

A week in security (February 18 – 24)

Last week on Malwarebytes Labs, we explored the world of crack hunting, gave you a 101 on the world of bots and their threats and advantages, and took a look at some clever phishing scams. We also explained how a Mac fends off malware, posted a handy “lazy person's guide to cybersecurity,” and du...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/02/06 6:16 p.m.86 views

Google Chrome announces plans to improve URL display, website identity

“Unreadable gobbledygook” is one way to describe URLs today as we know them, and Google has been attempting to redo their look for years. In their latest move to improve how Chrome—and of course, how the company hopes other browsers would follow suit—displays the URL in its omnibox the address ba...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/11/20 3:0 p.m.86 views

What DNA testing kit companies are really doing with your data

Sarah hovered over the mailbox, envelope in hand. She knew as soon as she mailed off her DNA sample, there’d be no turning back. She ran through the information she looked up on 23andMe’s website one more time: the privacy policy, the research parameters, the option to learn about potential healt...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/10/29 5:20 p.m.86 views

Mac cryptocurrency ticker app installs backdoors

An astute contributor to our forums going by the handle 1vladimir noticed that an app named CoinTicker was exhibiting some fishy behavior over the weekend. It seems that the app is covertly installing not just one but two different backdoors. Behaviors The CoinTicker app, on the surface, appears ...

0.1AI score
Exploits0
Total number of security vulnerabilities4706