Lucene search
+L
MalwarebytesMost viewed

4709 matches found

malwarebytes
malwarebytes
added 2022/05/06 4:29 p.m.21 views

OpenSea warns of Discord channel compromise

OpenSea, the primary marketplace for buyers and sellers of non-fungible tokens NFTs, has reported major problems with its Discord support channel. How major? Well, theres a "potential vulnerability" which allowed spambots to post phishing links to other users. A problem that lead OpenSea Support ...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/30 1:22 p.m.21 views

Russia continues digital onslaught against Ukrainian systems

According to Microsoft, at least six Kremlin-backed hacking groups have been attacking Ukraine in the digital space in an onslaught that began before the invasion in late February. The company counted more than 237 cyberattack operations against Ukrainian systems and critical infrastructure. Thes...

1.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/18 11:27 a.m.21 views

A week in security (April 11 – 17)

Last week on Malwarebytes Labs: Credential-stealing malware disguises itself as Telegram, targets social media users Old Play Store apps served notice by upcoming API level changes Denonia cryptominer is first malware to target AWS Lambda Ransomware: March 2022 review Why identity management...

1.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/13 9:38 a.m.21 views

Steer clear of this “TestNTrace” SMS spam

Yesterday I received an SMS from “TestNTrace”, with the message resembling an official NHS communication: The text reads as follows: NHS: You’ve been in close contact with a person who has contracted the Omicron variant. Please order a test kit via: URL redacted Well, that’s an alarming thing to...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/11 2:25 p.m.21 views

Old Play Store apps served notice by upcoming API level changes

Starting very soon, old and outdated apps on the Google Play Store will no longer be available to download. A major clearout is coming, and if you’re an app developer it may be time to overhaul your product or face Android-centric oblivion. What’s happening? Android makes use of APIs application...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/11 12:3 p.m.21 views

A week in security (April 4 – 10)

Last week on Malwarebytes Labs: Why data protection and privacy are not the same, and why that matters: Lock and Code S03E09 YouTube channels of Taylor Swift, Justin Bieber, Harry Styles, and other musicians compromised Successful operations against Russian Sandworm and Strontium groups targeting...

1.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/01 3:31 a.m.21 views

MITRE ATT&CK® Evaluation results: Malwarebytes’ efficiency, delivered simply, earns high marks

Cybersecurity can be complex work, as security teams need to regularly decipher and prioritize alerts, protect against daily threats, and possibly implement product configuration changes, all while staying abreast of the latest intelligence on new and evolving threats. For organizations that lack...

7.7AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/28 10:17 a.m.21 views

A week in security (March 21 – 27)

Last week on Malwarebytes Labs: Anti-war open-source software developer targets Russians and Belarussians with “protestware” Elden Ring exploit traps players in infinite death loop Update now! Many HP printers affected by three critical security vulnerabilities White House urges US businesses:...

2.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/22 8:47 p.m.21 views

Facebook users wary of security mail find themselves locked out of accounts

It’s not unusual for sites and services to offer additional forms of protection on top of regular security features. Some of the bigger ones even go the extra mile, protecting from attacks up to a potential nation state level. The most famous example of this recently is likely Google. Its Advance...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/02 11:26 a.m.21 views

Toyota’s just in time manufacturing faced with disruptive cyberattack

Toyota suspended the operation of 28 lines at 14 plants in Japan on Tuesday, March 1, after a cyberattack on supplier Kojima Industries Corp. Some plants operated by Toyotas affiliates Hino Motors and Daihatsu are included in the shutdown. Hino suspended all operations at its Koga facility, which...

1.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/25 12:50 p.m.21 views

Google and Microsoft accused of feeding smaller search engines spam ads

Google and Microsoft appear to have been flooding their smaller search engine rivals with spam ads, to limit the number of higher-value ads that appear on them, according to data viewed by POLITICO. Ads are considered "spam" if they appear in search results but have little to no relevance to the...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/14 5:14 p.m.21 views

Don’t let scammers ruin your Valentine’s Day

Today is Valentines Day, so we thought wed show you how cybercriminals use special times like this one for phishing attacks. Our Valentines story starts with a victim receiving an email message. The email urges them to open an attached file, and also contains well formatted content that tries to...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/08 2:4 p.m.21 views

“We absolutely do not care about you”: Sugar ransomware targets individuals

Ransomware tends to target organizations. Corporations not only house a trove of valuable data they cant function without, but they are also expected to cough up a considerable amount of ransom money in exchange for their encrypted files. And while corporations struggle to keep up with attacks,...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2022/02/03 3:36 p.m.21 views

Beware bogus OperaGX sponsorship offers

If you’re a YouTuber, watch out for bogus Opera missives winging their way to you. The Browser team has had to send out a warning in relation to scammy antics trading on their good name. At a time when people are stretched for cash, nothing could be better than a promo mail bearing good news...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/01/28 9:1 a.m.21 views

Big Mother is watching: What parents REALLY think about tracking their kids

Every year on Data Privacy Day, we’re greeted with countless arguments about the absolute merits of data privacy protections good, invasions bad, but we rarely see a faithful, factual accounting for the biggest data privacy conundrum facing billions of people every single day: Should parents inva...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/01/13 3:36 p.m.21 views

Phishers on the prowl with fake parking meter QR codes

QR codes come and go as a threat. The last time we wrote about them they were causing problems at gas stations, and by sheer chance this latest outing shares vehicular related subject matter. Law enforcement in the US is sounding the alarm regarding parking meters. A quick refresher QR Quick...

7.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/01/10 11:58 a.m.21 views

A week in security (January 3 – 9)

Last week on Malwarebytes Labs: Ransomware attacks Finalsite, renders 8,000 school sites unreachable for days Patchwork APT caught in its own web Sophisticated phishing scheme spent years robbing authors of their unpublished work Google and Facebook fined $240 million for making cookies hard to...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/01/05 12:48 p.m.21 views

$10m of funds goes missing in what appears to be a cryptocurrency rug-pull

There’s a lot of concern in the cryptocurrency realm at the moment. A yield farming platform "utilizing arbitrage to gain optimal yield with low risk" has gone AWOL. Site down, Twitter account deleted, no word from the team behind it explaining what happened. Worst of all, some $10 million worth ...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2022/01/04 4:45 p.m.21 views

Customer support scammers take aim at NFT enthusiasts

Adidas has been making waves in the NFT space with a collection of footwear/bored ape crossover sales. WEN? EARLY ACCESS MINTING STARTS NOW First look of the collaborative NFT with @gmoneyNFT @punkscomic and @BoredApeYC Good luck and TracksuitUp pic.twitter.com/REYOSdRbNT -- adidas Originals...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2021/12/30 5:12 p.m.21 views

What is IP sniffing?

IP sniffers, also known as packet sniffers, network analyzers, or protocol analyzers, are tools which play an essential role in the monitoring of networks, and in troubleshooting network-related issues. In essence, IP sniffing is monitoring traffic over a TCP/IP network. IP sniffers intercept the...

0.8AI score
Exploits0
malwarebytes
malwarebytes
added 2021/12/13 4:50 p.m.21 views

Spear phish, whale phish, regular phish: What’s the difference?

There are many types of phishing attack nowadays, to the extent it can be tricky to keep up with them all. We have unique names for mobile attacks, postal attacks, threats sent via SMS and many more besides. However, we often see folks mix up their spears and their whales, and even occasionally...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/09 8:8 p.m.21 views

Smart TV adverts put a wrinkle in your programming

Smart TVs are back in the news due to the potential pitfalls of embedded advertising. It may come as a surprise to some, but these devices aren’t particularly new. As far back as 2013, security researchers were already exploring the issues related to internet connected televisions in a home...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/09 12:47 p.m.21 views

How to remove adware on an Android phone

It shouldn’t be surprising that Android devices are the targets of threats like adware and other Potentially Unwanted Programs PUPs. After all, there are millions of apps on the Google Play Store, servicing billions of monthly active users globally. And, as we have noted with Mac virus trends,...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/08 9:57 p.m.21 views

Multiple video games break after domain name snafu

We’ve seen quite a few complaints from gamers this past weekend, unable to load up and play games on the Steam platform. The problem wasn’t hackers, or DDoS attacks, or anything else. Rather, the issue is something bundled with the game by default designed to keep titles “secure” from tampering...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/08 4:48 p.m.21 views

Why we fail at getting the cybersecurity basics right, with Jess Dodson: Lock and Code S02E21

The cybersecurity basics should be just that—basic. Easy to do, agreed-upon, and adopted at a near 100 percent rate by companies and organizations everywhere, right? Youd hope. But the reality is that basic cybersecurity blunders continue to affect businesses of all sizes, which has led to...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/02 11:37 a.m.21 views

Is Apple’s Safari browser the last, best hope for web privacy?

What browser do you use? Theres a good chance—roughly one in seven—that its Google Chrome. And even if you prefer a different browser, theres a good chance that youre using something thats based on Google Chrome, such as Edge, Vivaldi, Chromium, Brave, or Opera. After a decade and and a half of...

Exploits0
malwarebytes
malwarebytes
added 2021/10/08 9:27 a.m.21 views

Discord scammers lure victims with promise of free Nitro subscriptions

A number of bogus offers are doing the rounds in Discord land at the moment. Discord, a group text chat/VoiP app of choice for many gaming communities, is having a bit of trouble with phishing links. You may recall we’ve covered a lot of Discord scams previously. Service users can create bots,...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2021/10/05 2:22 p.m.21 views

Criminals were inside Syniverse for 5 years before anyone noticed

"A global privacy disaster", "espionage gold", and "a state-sponsored wet dream" are just some of the comments one can read regarding the breach at Syniverse, a key player in the tech/telecommunications industry that calls itself the "center of the connected world." In a filing with the US Securi...

1.7AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/07 10:1 a.m.21 views

Apple delays plans to search devices for child abuse imagery

After the uproar from users and privacy advocates about Apple’s controversial plans to scan users devices for photos and messages containing child abuse and exploitation media, the company has decided to put the brakes on the plan. If you may recall, Apple announced in early August that it would...

Exploits0
malwarebytes
malwarebytes
added 2021/08/30 7:10 a.m.21 views

Hackers, tractors, and a few delayed actors. How hacker Sick Codes learned too much about John Deere: Lock and Code S02E16

No one ever wants a group of hackers to say about their company: "We had the keys to the kingdom." But thats exactly what the hacker Sick Codes said on this weeks episode of Lock and Code, in speaking with host David Ruiz, when talking about his and fellow hackers efforts to peer into John Deeres...

0.3AI score
Exploits0
malwarebytes
malwarebytes
added 2021/05/06 2:7 p.m.21 views

Facebook bans Signal ads that reveal the depth of what it knows about you

Most of our readers are well aware of the fact that the big tech corporations, especially those that run social media know a great deal about us and our behavior. But it rarely hits home how much personal data they have about us and how they can guess, quite correctly, even more. Lots more. Signa...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2020/10/02 5:0 p.m.21 views

VideoBytes: Ransomware gets wasted!

Hello dear readers, and welcome to the latest edition of VideoBytes! On todays episode, were talking about how ransomware is on the rise again, focused on attacking corporations with malware that not only encrypts files, but also steals it. The tactics used to deploy these forms of ransomware hav...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2020/09/01 2:15 p.m.21 views

New web skimmer steals credit card data, sends to crooks via Telegram

The digital credit card skimming landscape keeps evolving, often borrowing techniques used by other malware authors in order to avoid detection. As defenders, we look for any kind of artifacts and malicious infrastructure that we might be able to identify to protect our users and alert affected...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2020/08/24 4:12 p.m.21 views

A week in security (August 17 – 23)

Last week on Malwarebytes Labs, we looked at the impact of COVID-19 on healthcare cybersecurity, dug into some pandemic stats in terms of how workforces coped with going remote, and served up a crash course on malware detection. Our most recent Lock and Code podcast explored the safety of parenta...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2020/08/10 3:30 p.m.21 views

A week in security (August 3 – 9)

Last week on Malwarebytes Labs, on our Lock and Code podcast, we talked about identity and access management technology. We also wrote about business email compromises to score big, discussed how the Data Accountability and Transparency Act of 2020 looks beyond consent, and we analyzed how the...

1.1AI score
Exploits0
malwarebytes
malwarebytes
added 2020/08/03 3:30 p.m.21 views

Lock and Code S1Ep12: Pinpointing identity and access management’s future with Chuck Brooks

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Chuck Brooks, cybersecurity evangelist and adjunct professor for Georgetown University’s Applied Intelligence Program and graduate Cybersecurity Programs...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2020/04/08 4:0 p.m.21 views

Online credit card skimming increased by 26 percent in March

Crisis events such as the current COVID-19 pandemic often lead to a change in habits that captures the attention of cybercriminals. With the confinement measures imposed in many countries, for example, online shopping has soared and along with it, credit card skimming. According to our data, web...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2019/10/29 3:56 p.m.21 views

Stalkerware developer dealt new blow by FTC

Last week, the US Federal Trade Commission FTC interpreted its broad consumer protection mandate to file a first-of-its-kind enforcement action against the developer of three mobile stalkerware applications. The developer was banned from further selling the apps unless significant changes were ma...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2018/06/20 4:0 p.m.21 views

PSA: Recruitment portals and job sites at risk

Readers of Malwarebytes Labs aren't new to the social engineering tactics of malcontents to get users to respond to fake job offers via email. In 2014, we wrote about spam claiming to be from the recipient's supposed work application to a "Career Services Department," only to be redirected to a...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2018/05/03 5:44 p.m.21 views

Internet Shortcut used in Necurs malspam campaign

The Necurs botnet continues to be one of the most prolific malicious spam distributors, with regular waves of carefully-crafted attachments that are used to download malware. The majority of malspam campaigns that we track are targeting Microsoft Office with documents containing either macros or...

1AI score
Exploits0
malwarebytes
malwarebytes
added 2018/02/12 2:0 p.m.21 views

Drive-by cryptomining campaign targets millions of Android users

Malvertising and online fraud through forced redirects and Trojanized apps—to cite the two most common examples—are increasingly plaguing Android users. In many cases, this is made worse by the fact that people often don't use web filtering or security applications on their mobile devices. A...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2017/12/08 4:0 p.m.21 views

Interesting disguise employed by new Mac malware HiddenLotus

On November 30, Apple silently added a signature to the macOS XProtect anti-malware system for something called OSX.HiddenLotus.A. It was a mystery what HiddenLotus was until, later that same day, Arnaud Abbati found the sample and shared it with other security researchers on Twitter. The...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2017/12/07 3:0 p.m.21 views

How we can stop the New Mafia’s digital footprint from spreading in 2018

Cybercriminals are the New Mafia of today’s world. This new generation of hackers are like traditional Mafia organizations, not just in their professional coordination, but their ability to intimidate and paralyze victims. To help businesses bring a good security fight to the digital streets, we...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2017/12/06 5:0 p.m.21 views

Internet of Things (IoT) security: what is and what should never be

The Internet has penetrated seemingly all technological advances today, resulting in Internet for ALL THE THINGS. What was once confined to a desktop and a phone jack is now networked and connected in multiple devices, from home heating and cooling systems like the Nest to AI companions such as...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2017/11/22 6:47 p.m.21 views

Terdot Trojan likes social media

We usually advise people that have fallen victim to banker Trojans to change all their passwords, especially the ones that are related to their financial sites and apps. Besides the dangers of re-used passwords, there are other reasons why this is important. This advice is especially applicable t...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2017/10/17 7:25 a.m.21 views

Yet more mobile adware found in Google Play

Finding an adware variant that made its way past the Google Play store is out of the ordinary. So when two adware variants slip by in one week, we take notice. Last week, we added two new Ad SDKs to our growing list of adware detections—Adware.Solid and Adware.Cootek. Both Ad SDKs were found in a...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2017/06/19 3:52 p.m.21 views

Breaking the attack chain

The attack chain. It’s a term used often in infosecurity. Also known as the kill chain, it was originally used as a military concept to describe the structure of an attack. It serves the same function in cybersecurity, where various methods of malware infiltration, deployment, and execution are...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2026/07/06 7:14 a.m.20 views

A week in security (June 29 – July 5)

Last week on Malwarebytes Labs: Verified X ad spreads Mac malware, while ConsentFix steals Microsoft accounts Apple’s Hide My Email doesn’t hide it very well Fake Google and Cloudflare verification pages spread multiple malware families WinRAR flaw could allow attackers to take control of your...

6AI score
Exploits0
malwarebytes
malwarebytes
added 2026/05/07 2:37 p.m.20 views

Massive AI investment scam network spans 15,500 domains

Researchers tracked a large AI‑themed investment scam campaign involving more than 15,000 domains. It uses cloaking and deepfakes to hide from security tools while targeting ordinary users. Criminals abused the Keitaro ad-tracking platform as part of a cloaking system so real victims see scam...

5.8AI score
Exploits0
malwarebytes
malwarebytes
added 2026/05/04 11:10 a.m.20 views

The 2026 World Cup scam economy is already running before the first whistle

The FIFA World Cup 2026 is scheduled to begin June 11 across the US, Canada, and Mexico. The web is filling with sites impersonating ticket vendors, telecoms, sticker publishers, toy manufacturers, immigration services, and crypto projects, all linked to the World Cup brand. Together, they map ou...

5.7AI score
Exploits0
Total number of security vulnerabilities4709