Lucene search
+L
MalwarebytesMost viewed

4709 matches found

malwarebytes
malwarebytes
added 2023/09/01 10:45 a.m.23 views

A firsthand perspective on the recent LinkedIn account takeover campaign

Not long ago I wrote about a recent campaign to hold LinkedIn users' accounts to ransom. Shortly after I published the article, a co-worker, Pearce, reached out to me told me he'd been a target of the campaign. His story begins with an SMS text from LinkedIn telling him to reset his password. He...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2023/08/17 11:0 a.m.23 views

Catching up with WoofLocker, the most elaborate traffic redirection scheme to tech support scams

Back in January 2020, we blogged about a tech support scam campaign dubbed WoofLocker that was by far using the most complex traffic redirection scheme we had ever seen. In fact, the threat actor had started deploying infrastructure in earnest as early as 2017, about 3 years prior to our...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/06/27 3:0 a.m.23 views

Software company accused of illegally profiling millions of mobile phone users

A digital rights and privacy organization has filed a complaint against software company TeleSign for gathering and selling information on millions of mobile phone users. The organization that filed the complaint is nyob. nyob is an Austrian based digital right organization that focusses on...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/06/20 2:0 a.m.23 views

Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files

The ramifications of a Reddit breach which occurred back in February are now being felt, with the attackers threatening to leak the stolen data. The February attack, billed as a "sophisticated phishing campaign" by Reddit, involved an attempt to swipe credentials and two-factor authentication...

10AI score
Exploits0
malwarebytes
malwarebytes
added 2023/06/09 8:0 a.m.23 views

Update your Cisco System Secure Client now to fix this AnyConnect bug

Cisco Secure Client is the fresh recipient of a fix to address a high-severity vulnerability related to improper permissions. The flaw allows attackers to potentially escalate privileges to the SYSTEM account. From the vulnerability advisory: A vulnerability in the client update feature of Cisco...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/05/11 8:0 a.m.23 views

Malwarebytes achieves perfect score in latest AVLab assessment

Malwarebytes has once again earned a perfect score in AVLabs March 2023 real-world malware detection tests, marking the sixth consecutive quarter achieving this feat. Let's delve into the details of the test and how both consumer and business products outperformed competitors in exhaustive testin...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/05/05 12:15 p.m.23 views

Newspaper evades Russian censors, hides news in Counter-Strike map

A Finnish newspaper is making clever use of popular video game titles to promote press freedom and bypass Russian media restrictions regarding the invasion of Ukraine. The plan: Hide a secret room underneath a map, which players can stumble upon and see facts, figures, and photographs of whats be...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/04/27 8:30 a.m.23 views

Magecart threat actor rolls out convincing modal forms

To ensnare new victims, criminals will often devise schemes that attempt to look as realistic as possible. Having said that, it is not every day that we see the fraudulent copy exceed the original piece. While following up on an ongoing Magecart credit card skimmer campaign, we were almost fooled...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/04/24 7:0 a.m.23 views

Removing the human: When should AI be used in emotional crisis? Lock and Code S03E09

In January, a mental health nonprofit admitted that it had used Artificial Intelligence to help talk to people in distress. Prompted first by a user's longing for personal improvement--and the difficulties involved in that journey--the AI tool generated a reply, which, with human intervention,...

6.4AI score
Exploits0
malwarebytes
malwarebytes
added 2023/04/18 1:0 a.m.23 views

Payment giant's point-of-sale outage caused by ALPHV ransomware

On April 12, 2023, payment giant NCR reported it was looking into an issue with its point-of-sale POS systems that caused an outage, leaving customers unable to use the system. The NCR Aloha POS systems are popular in hospitality services. Customers include Wendys, Chuck e Cheese, Cafe Rio, Leean...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/04/06 7:0 a.m.23 views

A whirlwind adventure: Malwarebytes' 15-year journey in business cybersecurity

As we raise a glass to toast Malwarebytes' 15th anniversary of boldly venturing into the realm of business cybersecurity, we're feeling nostalgic. It's time to buckle up and embark on a whimsical journey through the twists and turns of Malwarebytes' evolution. From modest beginnings to becoming a...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/21 2:0 p.m.23 views

Malware creator who compromised 10,000 computers arrested

The creator of a Remote Access Trojan RAT, responsible for compromising more than 10,000 computers, has been arrested by law enforcement in Ukraine. At the time of the arrest, the developer still had real-time access to 600 PCs. According to the announcement, the RAT could tell infected devices t...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/21 9:0 a.m.23 views

A look at a Magecart skimmer using the Hunter obfuscator

Threat actors are notorious for trying to hide their code in various ways, from binary packers to obfuscators. On their own, these tools are not always malicious as they can also be be used by companies or individuals who wish to keep their work safe from piracy, but overall they tend to be large...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/03/16 4:30 p.m.23 views

Emotet adopts Microsoft OneNote attachments

Last week, Emotet returned after a three month absence when the botnet Epoch 4 started sending out malicious emails with malicious Office macros. While the extracted attachments were inflated to several hundred megabytes, it was surprising to see that Emotet persisted in using the same attack...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/14 4:0 a.m.23 views

One in nine online stores are leaking your data, says study

eCommerce security company Sansec has revealed it's found a number of online stores accidentally leaking highly sensitive data. After studying 2,037 online stores, the company found that 12.3 percent exposed compressed files in ZIP, SQL, and TAR archive formats, which BleepingComputer noted appea...

0.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/08 4:0 a.m.23 views

Stalkerware-type app developers fined by NY Attorney General

Stalkerware is a huge problem when it comes to intrusion into peoples personal lives. "Friends", strangers, family members, abusive spouses and many more can potentially dabble in this malignant pastime and cause all manner of trouble for their target. Thanks to the New York Attorney Generals...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/07 2:0 a.m.23 views

On the 20th Safer Internet Day, what was security like back in 2004?

Today is the 20th Safer Internet Day. Since 2004, there's been an annual event designed to "Promote safer and more responsible use of online technology and mobile phones, especially amongst children and young people across the world." 2004 was a key year for several safety activities, encompassin...

7.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/01/28 11:45 a.m.23 views

Hive! Hive! Hive! Ransomware site submerged by FBI

On January 26, 2023, the United States Department of Justice DoJ released details about a disruption campaign against the Hive ransomware group. The disruption campaign has reportedly had access to Hive's infrastructure since July of 2022. Its access became public on Thursday when Hive's dark web...

0.6AI score
Exploits0
malwarebytes
malwarebytes
added 2023/01/23 1:0 a.m.23 views

A week in security (January 16—22)

Last week on Malwarebytes Labs: Google to support the use of Rust in Chromium Law enforcement app SweepWizard leaks data on crime suspects Accountant ordered to pay ex-employer after bossware shows "time theft" TikTok dances to the tune of $5.4m cookie fine "Untraceable" surveillance firm sued fo...

7.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/01/20 3:0 p.m.23 views

Credit card fraud group member could get up to 30 years in jail

Card fraud, a staple diet of scammers online, is currently featuring heavily on the US Department of Justice portal. The reason? A story which has rumbled on for a few years finally seems to be pulling into its final destination, as a man admits his role in a slice of fraud which impacted thousan...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/01/20 12:30 p.m.23 views

[updated]Ransomware money laundering operation disrupted, founder arrested

The US Department of Justice DOJ has released information about the arrest of Anatoly Legkodymov, the founder and majority owner of a cryptocurrency exchange called Bitzlato, on money laundering charges. Legkodymov, a Russian national who lives in China, is accused of processing over $700 million...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/12/21 2:0 a.m.23 views

Millions of Gemini cryptocurrency exchange user details leaked

If youre a user of the Gemini cryptocurrency exchange, its time to be on your guard against phishing attacks. Gemini says its own systems have not been compromised, but an unnamed third party has become the focal point for a breach. On December 13 or some point before, rogues gained access to jus...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/12/20 5:0 a.m.23 views

Restaurant platform SevenRooms confirms data breach

SevenRooms, a "guest experience and retention platform" for food establishments and hospitality organisations, has confirmed it has fallen victim to a third party vendor data breach. Mostly known for its customer management platform, Seven Rooms' breach came to light after stolen data was seen fo...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/12/05 11:15 p.m.23 views

Lazarus group uses fake cryptocurrency apps to plant AppleJeus malware

The North Korean Lazarus Group, aka APT38, is one of the most sophisticated North Korean APTs. It's been active since 2009 and is responsible for many high profile attacks. In January of 2022 the Malwarebytes Intelligence Team uncovered a campaign where Lazarus conducted spear phishing attacks...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/10/12 4:15 p.m.23 views

Top 5 ransomware detection techniques: Pros and cons of each

In the fight against ransomware, much of the discussion revolves around prevention and response. Actually detecting the ransomware, however, is just as important to securing your business. To understand why, just consider the following example. Lets say youre a farmer taking care of a flock of...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/29 12:0 p.m.23 views

Fast Company hacked to send obscene and racist messages

Yesterday, Apple News announced it had disabled the channel of Fast Company, a US-based business magazine, after surprised Twitter users reported it was tweeting offensive comments. An incredibly offensive alert was sent by Fast Company, which has been hacked. Apple News has disabled their channe...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/26 12:0 p.m.23 views

Twitter fixes bug that left devices logged in after password reset

Twitter says it has fixed a bug that meant users weren't logged out of active sessions on all devices after manually resetting their passwords. Writing on its blog, Twitter said: "We want to let you know that we recently fixed a bug that allowed Twitter accounts to stay logged in from multiple...

Exploits0
malwarebytes
malwarebytes
added 2022/09/20 11:0 a.m.23 views

Grand Theft Auto 6 suffers grand theft

For games publisher Take-Two Interactive, damage control is in full effect as word spreads of a Grand Theft Auto-centric network compromise. Developer Rockstar Games has suffered a major leak of upcoming game content, specifically unfinished video footage of Grand Theft Auto 6. The first anyone...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/19 4:0 p.m.23 views

Hookup site targeted by typo-squatters

Ethical hacker and security researcher Kody Kinzie shared with BleepingComputer a list of over 50 domains of which many are spelling variations of the brand name Sniffies. Sniffies identifies itself as a "modern, map-based, meetup app for gay, bi, and curious guys." Kody used an open source tool...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/16 8:0 p.m.23 views

3 ways MDR can drive business growth for MSPs

The managed service provider market is growing rapidly. As cyberattacks continue to increase worldwide, more and more small-and-medium-sized businesses SMBs are looking to MSPs to take the load off when it comes to securing their business. With more business, of course, comes more competition--an...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/06 12:0 p.m.23 views

YouTuber on the run after allegedly swiping $55m from followers

We mostly hear about bogus advertising and offers via compromised accounts on Instagram or Facebook. Strict advertising rules on social media involve making it clear that someone is promoting an ad or offering up a risky venture. However, sometimes things go wrong on other platforms like YouTube...

0.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/30 2:0 p.m.23 views

British Airways customers targeted in lost luggage Twitter scam

Getting back into the travel habit? Jumping on a plane soon? Experienced a bit of a luggage disaster and looking for help on social media? Watch out, because a lack of prior research could prove very costly. Word has spread of a bogus Twitter account pretending to be a customer support channel of...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/29 10:0 a.m.23 views

A week in security (August 22 - August 28)

Last week on Malwarebytes Labs: Cryptojackers growing in numbers and sophistication CISA wants you to patch these actively exploited vulnerabilities before September 8 Reddit users crowdsourcing explicit images and identities Criminals socially engineer their way to bank details with fake arrest...

0.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/03 5:15 p.m.23 views

Bank fraud scammers trick victims with claims of bogus Zelle transfers

It pays to be careful where cold calls from someone claiming to work for your bank are concerned. Scam callers are impersonating bank staff, with suggestions of dubious payments made to your account. One unfortunate individual has already lost around $1,000 to this slice of telephone-banking base...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/19 1:29 p.m.23 views

Fraudulent cryptocurrency investment apps are duping investors

Together with the Department of Homeland Security DHS and the Cybersecurity and Infrastructure Security Agency CISA, the FBI has released a warning about cybercriminals creating fraudulent cryptocurrency investment apps in order to defraud cryptocurrency investors. The threat actors convince...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/14 4:9 p.m.23 views

Elden Ring maker Bandai Namco hit by ransomware and data leaks

Its not been a great couple of months for gaming giant Bandai Namco. The name behind smash hit titles like Elden Ring and Dark Souls has endured a long run of cheats and hacks. Hacking concerns led to Remote Code Execution issues, and multiplayer features in Souls titles were disabled for months...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/30 3:25 p.m.23 views

Amazon Photos vulnerability could have given attackers access to user files and data

Amazon has patched a flaw in the Amazon Photos app which could have allowed an attacker to steal and use a users unique access token that verifies their identity across multiple Amazon APIs. That would give attackers access to a trove of information, since many of these APIs contain personal data...

0.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/22 3:52 p.m.23 views

MEGA claims it can’t decrypt your files. But someone’s managed to…

MEGA, the cloud storage provider and file hosting service, is very proud of its end-to-end encryption. It says it couldnt decrypt your stored files, even if it wanted to. “All your data on MEGA is encrypted with a key derived from your password; in other words, your password is your main encrypti...

0.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/14 12:38 p.m.23 views

Introducing Malwarebytes Vulnerability Assessment for OneView: How to check for Common Vulnerabilities and Exposures (CVEs)

Malwarebytes is happy to announce our Vulnerability Assessment module for OneView, our multi-tenant console where you can manage Malwarebytes Nebula accounts, subscriptions, invoicing, and integrations. This module enables our MSPs to scan, identify, and assess vulnerabilities in customers’ digit...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/09 2:18 p.m.23 views

ASyncRat surpasses Dridex, TrickBot and Emotet to become dominant email threat

Earlier this year Malwarebytes released its 2022 Threat Review, a review of the most important threats and cybersecurity trends of 2021, and what they could mean for 2022. Among other things it covers the years alarming rebound in malware detections, and a significant shift in the balance of emai...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/01 11:37 p.m.23 views

More than a quarter of Americans fell for robocall scam calls in past year

More and more Americans have been falling victim to phone scams since 2019. According to the latest report from Truecaller Google Docs upload of the entire report, separate blog here, a known spam blocker and caller ID app, 68.4 million Americans were victimized in the last 12 months, a substanti...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/01 1:4 p.m.23 views

WhatsApp accounts hijacked by call forwarding

In a short post on LinkedIn Rahul Sasi, founder and CEO of CloudSEK, explains how WhatsApp account takeovers are possible. The methods consists of several steps and it takes some social engineering skills, but it’s good to be aware of the possibility and how it works. It starts with the threat...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/05/31 12:27 p.m.23 views

Is quantum teleportation the future of secure communications?

“Beam me up Scotty” will always remain my first association with teleportation. And as it stands now, we are still a long way from teleporting matter, but the teleportation of information has recently made a huge step forward. Researchers in Delft say they have succeeded in teleporting quantum...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/05/16 1:7 p.m.23 views

Why MRG-Effitas matters to SMBs

When selecting the right cybersecurity vendor to protect their operations, small- and medium-sized businesses SMBs can lean on several third-party research organizations that analyze which cybersecurity products can best prevent, detect, and clean up various types of cyberattacks today. But these...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/05/16 11:54 a.m.23 views

Fake reCAPTCHA forms dupe users via compromised WordPress sites

Researchers at Sucuri investigated a number of WordPress websites complaining about unwanted redirects and found websites that use fake CAPTCHA forms to get the visitor to accept web push notifications. These websites are a new wave of a campaign that leverages many compromised WordPress sites...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/05/05 11:24 a.m.23 views

It’s business as usual for REvil ransomware

After the FBS arrested 14 of its members in January, and a subsequent lull in action, the REvil ransomware gang appears to be back. We say "appears" because its still unclear whether the groups operations have indeed restarted. To the trained eye, REvils movements seem out of sorts. When REvils o...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/28 2:35 p.m.23 views

Fake USA for UNHCR site wants your Ukraine donations in Bitcoin

Since Russia began invading Ukraine in late February, many organizations have set up donation pages to aid the most heavily affected: Families who were forced out of their homes due to bombings and children separated from grown-ups who decided to stay and take arms. Weve also seen a considerable...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/21 12:16 p.m.23 views

Beware of fake Twitter philanthropists offering to put $750 into your Cash App account

Twitter philanthropists are a controversial emergence on the social media platform. In essence, Twitter-based philanthropy is about incredibly rich people helping out those who need it. The help is random, and often focused around performing a task like listening to a podcast or simply retweeting...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/11 2:36 p.m.23 views

Denonia cryptominer is first malware to target AWS Lambda

Security researchers at Cado Security, a cybersecurity forensics company, recently discovered the first publicly-known malware targeting Lambda, the serverless computing platform of Amazon Web Services AWS. Though Lambda has been around for less than ten years, serverless technology is considered...

0.7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/08 11:3 a.m.23 views

Don’t enter your recovery phrase! Phishers target Ledger crypto-wallet users

Ledger is one of the biggest hardware cryptocurrency wallets around and scammers have noticed. Phishing mails are in circulation, hoping to snag Ledger users with a sneaky request for passphrases. What is a Ledger recovery phrase? A recovery phrase is an incredibly important combination of words...

7AI score
Exploits0
Total number of security vulnerabilities4709