Lucene search
+L
MalwarebytesMost viewed

4709 matches found

malwarebytes
malwarebytes
added 2024/04/23 9:10 p.m.24 views

Google ad for Facebook redirects to scam

Today, we are looking at a malicious ad campaign targeting Facebook users via Google search. It is well-known that tech support scammers attract new victims by buying ads for certain keywords related to their audience. What is perhaps less known is how it is even possible to impersonate top brand...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2024/04/07 3:58 p.m.24 views

60% of small businesses are concerned about cybersecurity threats

According to a recent poll by the US Chamber of Commerce, 60% of small businesses are concerned about cybersecurity threats, and 58% are concerned about a supply chain breakdown. Not surprisingly, small businesses in the professional services sector feel significantly more concerned about...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/29 1:35 p.m.24 views

How to back up your iPhone to iCloud

They say the only backup you ever regret is the one you didnt make. iPhone backups can be used to easily move your apps and data to a new phone, to recover things youve lost, or to fix things that have failed. The most convenient way to backup your iPhone is to have it backup to iCloud. Backups a...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/28 7:12 p.m.24 views

Powering the future of ThreatDown with AI

Nobody can deny the influence of AI today. In just a few years, we have observed AIs capacity to be as transformative as the internet and smartphones, especially for cybersecurity. Indeed, the potential of AI to radically simplify complex security environments is unmistakable, and aligns closely...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/28 7:9 p.m.24 views

Stopping a K-12 cyberattack (SolarMarker) with ThreatDown MDR

In early 2024, a large K-12 school district partnered with ThreatDown MDR to strengthen its cybersecurity posture. Shortly after onboarding, ThreatDown MDR analysts detected unusual patterns of activity subsequently identified as the work of SolarMarker, a sophisticated backdoor. It became eviden...

8AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/27 10:36 a.m.24 views

Meta to abandon social media tracking tool CrowdTangle

On 14 March, Meta announced it would abandon CrowdTangle, saying the tool will no longer be available after August 14, 2024. While most people have never heard of CrowdTangle, among journalists the tool is considered essential. Its popularity largely depends on the ability to monitor social media...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/19 12:2 p.m.24 views

Social media influencers targeted by identity thieves

Social media influencers are attractive targets for identity thieves. With large followings and a literal influence on their followers, its no wonder they are targeted by scammers and spreaders of fake news. A subset of influencers are the so-called "finfluencers": influencers that provide their...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2024/02/29 11:16 a.m.24 views

Facebook bug could have allowed attacker to take over accounts

A vulnerability in Facebook could have allowed an attacker to take over a Facebook account without the victim needing to click on anything at all. The bug was found by a bounty hunter from Nepal called Samip Aryal and has now been fixed by Facebook. In his search for an account takeover...

7.5AI score
Exploits0
malwarebytes
malwarebytes
added 2024/02/01 10:21 p.m.24 views

“You have blood on your hands.” Senate Committee calls for action by social media giants to protect children online

In an unusually emotional and unified setting, the Senate Judiciary Committee found common ground for the need to protect children online yesterday. On January 31, 2024, the CEOs of the most widely used social media platforms appeared before the Committee. Meta’s Mark Zuckerberg, Xs Linda...

7.5AI score
Exploits0
malwarebytes
malwarebytes
added 2024/01/16 11:31 a.m.24 views

“I’ll miss him so much” Facebook scam uses BBC branding to lure victims

Facebook scams are a constant nuisance and vary from like-farming to scams that can cost you some serious money. The latest one we found is a bit morbid. Recently, I’ve seen quite a few posts on my timeline that looked like this: Without going into details the post says: “I can’t believe he’s gon...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2024/01/04 4:21 p.m.24 views

Facebook introduces another way to track you – Link History

In what seems like yet another attempt to adapt its platform to prepare for new regulations, Facebook has started rolling out a new feature called Link History. Link History allows users to view and re-visit links they have visited with their Facebook browsing activity. Obviously Facebook will te...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2024/01/02 5:2 p.m.24 views

DNA data deserves better, with Suzanne Bernstein: Lock and Code S05E01

This week on the Lock and Code podcast… Hackers want to know everything about you: Your credit card number, your ID and passport info, and now, your DNA. On October 1 2023, on a hacking website called BreachForums, a group of cybercriminals claimed that they had stolen—and would soon...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/26 9:0 a.m.24 views

How to recognize AI-generated phishing mails

Phishing is the art of sending an email with the aim of getting users to open a malicious file or click on a link to then steal credentials. But most phishers arent very good, and the success rate is relatively low: In 2021, the average click rate for a phishing campaign was 17.8%. However, now...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/14 7:49 p.m.24 views

ALPHV ransomware gang returns, sorta

The ALPHV ransomware gang, arguably the second most dangerous "big game" ransomware operator, appears to be back in business after its infrastructure went down for five days. But all does not appear to be going well for group. ALPHVs dark web leak site may be back but it is only showing a single...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/13 4:29 p.m.24 views

Malvertisers zoom in on cryptocurrencies and initial access

During the past month, we have observed an increase in the number of malicious ads on Google searches for "Zoom", the popular piece of video conferencing software. Threat actors have been alternating between different keywords for software downloads such as "Advanced IP Scanner" or "WinSCP"...

7.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/21 5:16 p.m.24 views

Atomic Stealer distributed to Mac users via fake browser updates

Atomic Stealer, also known as AMOS, is a popular stealer for Mac OS. Back in September, we described how malicious ads were tricking victims into downloading this piece of malware under the disguise of a popular application. In an interesting new development, AMOS is now being delivered to Mac...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/13 6:2 a.m.24 views

Signal is testing usernames so you don’t have to share your phone number

Messaging service Signal is testing support for usernames as a replacement for phone numbers to serve as user identities. Signal provides encrypted instant messaging and is popular among people that value their privacy. Compared to more popular services like WhatsApp, Signal offers more layers of...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/09 4:7 p.m.24 views

Meta whistleblower says company has long ignored how it sexually endangers children

At a Senate hearing, a Meta whistleblower has revealed some shocking numbers around children’s experiences of its platforms. Arturo Béjar, a former engineering director at Meta, testified before the US Congress on Tuesday. Not only did he share his own daughters’ experience suffering harassment o...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/08 12:23 p.m.24 views

Using ChatGPT to cheat on assignments? New tool detects AI-generated text with amazing accuracy

ChatGPT and similar Large language models LLMs can be used to write texts about any given subject, at any desired length at a speed unmatched by humans. So its not a surprise that students have been using them to "help" write assignments, much to the dismay of teachers who prefer to receive...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2023/10/23 2:51 p.m.24 views

MGM attack is too late a wake-up call for businesses, says James Fair: Lock and Code S04E22

This week on the Lock and Code podcast… In September, the Las Vegas casino and hotel operator MGM Resorts became a trending topic on social media… but for all the wrong reasons. A TikTok user posted a video taken from inside the casino floor of the MGM Grand—the companys flagship hotel complex ne...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/09/14 2:0 a.m.24 views

Watch out, this LastPass email with "Important information about your account" is a phish

The consequences of last year's LastPass breach continue to be felt, with the latest insult to users coming in the form of a highly convincing phishing email. Although the "unauthorized party" that compromised LastPass users' data was able to steal password vaults, it's likely that they are havin...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/08/16 12:0 p.m.24 views

Malvertisers up their game against researchers

Threat actors constantly take notice of the work and takedown efforts initiated by security researchers. In this constant game of cat and mouse chasing, tactics and techniques keep evolving from simple to more complex, and more covert. This is a trend we have observed time and time again, no matt...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/04/20 2:0 a.m.24 views

FTC tackles tech support scams by chasing payment processor firms

A multinational payment processing company and two of its executives are facing a potential $650k fine as a result of allegedly processing credit card payments for tech support scammers. While this fine isnt exactly massive in comparison to some of the privacy breaches and other incidents seen do...

6.5AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/30 4:0 a.m.24 views

"BingBang" flaw enabled altering of Bing search results, account takeover

Researchers from Wiz have discovered a way to allow for search engine manipulation and account takeover. The research in question focuses on several Microsoft applications, with everything stemming from a new type of attack aimed at Azure Active Directory. Azure Active Directory is a single sign-...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/28 4:0 p.m.24 views

"Log-out king" Instagram scammer gets accounts taken down, then charges to reinstate them

A fraudster going by "OBN Brandon" has been defrauding Instagram influencers and entertainment figures out of hundreds of thousands of dollars by taking down their accounts and then asking for money to get them back up again, ProPublica reports. OBN has been successful in his exploits taking...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/28 1:0 a.m.24 views

ChatGPT helps both criminals and law enforcement, says Europol report

In a report, Europol says that ChatGPT and other large language models LLMs can help criminals with little technical knowledge to perpetrate criminal activities, but it can also assist law enforcement with investigating and anticipating criminal activities. The report aims to provide an overview ...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/23 1:0 a.m.24 views

Beware: Fake IRS tax email delivers Emotet malware

Tax season is upon us and, as with every year, we're seeing tax scammers rearing their heads. Below, we have an example of a tax scam currently in circulation along with some suggestions for avoiding these kinds of attacks. An IRS W-9 tax form scam A Form W-9 is a form you fill in to confirm...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/01 3:0 p.m.24 views

Crushing the two biggest threats to mobile endpoint security in 2023

Dont let their small size fool you: mobile devices can have a big impact on your security posture. Its easy to see why, considering that almost half of organizations said they suffered a mobile-related compromise in 2022. Malware and phishing are two particular mobile threats that you need to...

0.4AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/13 9:45 a.m.24 views

Consent to gather data is a "misguided" solution, study reveals

When researchers from the University of Pennsylvania's Annenberg School for Communication conducted a survey to see if "informed consent" practices are working online with regard to user data gathering, the results revealed weaknesses in a framework that, for decades, has served as the basis for...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/03 3:0 p.m.24 views

The rise of multi-threat ransomware

Today we have a ten minute YouTube expedition into the murky world of ransomware. In the video, "The rise of multi-threat ransomware" embedded below, I cover a couple of key talking points that always seem to come up in conversation. Single, double, triple? The video covers how ransomware made th...

0.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/12/16 10:30 a.m.24 views

Virtual kidnapping scam strikes again. Spot the signs

Warnings abound of a major new piece of fraud doing the rounds which uses your relatives voice as part of a blackmail scam. What happens is the victim receives a call from said relatives number, and theyre cut off by blackmailers who have them held hostage. The only way to get them back safely is...

0.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/10/31 8:0 p.m.24 views

Raspberry Robin worm used as ransomware prelude

Raspberry Robin aka Worm.RaspberyRobin started out as an annoying, yet relatively low-profile threat that was often installed via USB drive. First spotted in September 2021, it was typically introduced into a network through infected removable drives, often USB devices. Now the worm has been foun...

0.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/19 9:0 p.m.24 views

EDR vs MDR vs XDR – What’s the Difference?

Cyberattacks are rapidly evolving, leaving businesses and their IT security teams to handle immense workloads. Keeping up with todays cyberthreats not only involves staying up to date in an ever-changing threat landscape, it also involves managing complex security infrastructure and technologies...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/12 3:30 p.m.24 views

The MSP playbook on deciphering tech promises and shaping security culture

The in-person cybersecurity conference has returned. More than two years after Covid-19 pushed nearly every in-person event online, cybersecurity has returned to the exhibition hall. In San Francisco earlier this year, thousands of cybersecurity professionals walked the halls of Moscone Center at...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/26 6:0 p.m.24 views

Adware found on Google Play — PDF Reader serving up full screen ads

A PDF reader found on Google Play with over one million downloads is aggressively displaying full screen ads, even when the app is not in use. More specifically, the reader is known as PDF reader - documents viewer, package name com.document.pdf.viewer. As a result, this aggressive behavior lands...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/24 1:0 p.m.24 views

Binance chief says a “sophisticated hacking team” turned him into a deepfake hologram

Deepfakes are back, and causing major problems for people involved in financial circles. Scammers have been targeting people in the cryptocurrency community for some time now. Theres huge money to be made via the act of ripping folks off. Some of it is phishing, other attacks focus on breaking in...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/19 7:0 p.m.24 views

Tech support scammers target Microsoft users with fake Office 365 USB sticks

Microsoft is a hot target for scammers and acts of fraud. For example, tech support scam websites cover themselves in Windows branding and messages. Phone scammers claim to be calling directly from Microsoft. If its not a Bill Gates themed lottery spam mail in your mailbox, its a fake Excel...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/09 12:0 a.m.24 views

Twitter data breach affects 5.4M users

Twitter has confirmed that it was breached last month via a now-patched 0-day vulnerability in Twitters systems, allowing an attacker to link email addresses and phone numbers to user accounts. This enabled the attacker to compile a list of 5.4 million Twitter user account profiles. "We want to l...

1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/01 7:14 p.m.24 views

When a sextortion victim fights back

When Katie Yates suddenly started receiving nude photos of her friend, Natalie Claus, over on Snapchat, she instantly recognized that Claus had just become a victim of a sextortion attack. She also knew how Claus should respond. This happened in December 2019 when Claus was a sophomore. Both were...

Exploits0
malwarebytes
malwarebytes
added 2022/07/04 7:51 p.m.24 views

When good-faith hacking gets people arrested, with Harley Geiger: Lock and Code S03E14

When Lock and Code host David Ruiz talks to hackers—especially good-faith hackers who want to dutifully report any vulnerabilities they uncover in their day-to-day work—he often hears about one specific law in hushed tones of fear: the Computer Fraud and Abuse Act. The Computer Fraud and Abuse Ac...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/04 10:36 a.m.24 views

My Body, My Data Act would lock down reproductive and sexual health data

A new bill entered into both the House of Representatives and the Senate proposes the strongest Federal data privacy protections yet for an increasingly scrutinized form of data in the United States—reproductive and sexual health data. The “My Body, My Data Act of 2022” was announced in early Jun...

6.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/06 11:50 a.m.24 views

A week in security (May 30 – June 5)

Last week on Malwarebytes Labs: Intuit phish says "We have put a temporary hold on your account" The Quad commits to strengthening cybersecurity in software, supply chains Double-whammy attack follows fake Covid alert with a bogus bank call Microsoft Office zero-day "Follina"—its not a bug, its a...

Exploits0
malwarebytes
malwarebytes
added 2022/05/10 1:4 p.m.24 views

Client side scanning may cost more than it delivers

On May 11, 2022, the EU will publicize a proposal for a law on mandatory chat control. The European Commission wants all providers of email, chat and messaging services to search for suspicious messages in a fully automated way and forward them to the police in the fight against child pornography...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/28 4:48 p.m.24 views

FBI warns food and agriculture to brace for seasonal ransomware attacks

The Federal Bureau of Investigation FBI recently released a Private Industry Notification warning agriculture cooperatives also known as "farmers co-ops" of the looming danger of well-timed ransomware attacks. The agency warns that during the critical planting and harvesting seasons, attacks coul...

0.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/08 5:38 p.m.24 views

YouTube channels of Taylor Swift, Justin Bieber, Harry Styles, and other musicians compromised

Some of the biggest stars around have seen content placed on their YouTube accounts without permission over the last couple of days. Taylor Swift has around 40 million subscribers. Justin Bieber? 68 million. Harry Styles, a respectable 12 million. You can even add Eminem and Michael Jackson to th...

0.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/31 9:34 a.m.24 views

Ukraine shuts down disinformation bot farm

Given current world events, there’s an incredible amount of misinformation and disinformation around at the moment. Whether we’re talking 5G, the pandemic, vaccines, or invasions, there’s a lot out there. One of the biggest problems where bad information placed online is concerned is bot farms. A...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/16 2:57 p.m.24 views

CafePress faces $500,000 fine for data breach cover up

The US Federal Trade Commission FTC has announced that it took action against online customized merchandise platform CafePress over allegations that it failed to secure consumers’ sensitive personal data and covered up a major breach. CafePress is a popular online custom T-shirt and merchandise...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/25 8:59 p.m.24 views

Cyber lures and threats in the context of the war in Ukraine

The conflict between Ukraine and Russia goes a long way back, but it took a dramatic turn after the 2014 Ukrainian revolution. Since then, the war in the Donbas region has resulted in a number of casualties as well as a constant feeling of insecurity among the population. In recent months, Russia...

Exploits0
malwarebytes
malwarebytes
added 2022/02/25 6:54 p.m.24 views

CISA warns of cyberespionage by Iranian APT “MuddyWater”

Cybersecurity agencies in the US and UK have issued a joint cybersecurity advisory CSA on MuddyWater, a government-sponsored Iranian advanced persistent threat APT actor. The Cybersecurity and Infrastructure Security Agency CISA, the Federal Bureau of Investigation FBI, the US Cyber Command Cyber...

0.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/19 8:23 p.m.24 views

Watch out for this bump in LinkedIn phishing

LinkedIn is sometimes forgotten about in more general coverage of phishing attacks. Social media sites such as Facebook, Twitter, and Instagram receive regular attention. Cryptowallet customer support scams run wild in the replies to any cryptocurrency themed tweet. Facebook users can often be...

Exploits0
Total number of security vulnerabilities4709