RSS Reader for Computer Security Articles
Categories: News Tags: emotet Tags: malware Tags: IRS Tags: scam Tags: email Tags: W-9 Tags: word Tags: document Tags: macro Tags: macros We look at a current tax scam in circulation which looks to make an Emotet deposit on your PC. |
The post Beware: Fake IRS tax email delivers Emotet malware appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Threat Intelligence Team| Date: Mon, 16 Mar 2020 15:00:00 +0000
 | |
| We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data. Categories: Tags: APTAPT36coronaviruscoronavirus malwarecovid-19credential stealercrimson ratexploitexploitsinfo-stealermacromalicious macromalwarenation-state attackratremote administration toolSocial Engineeringspear phishingspear phishing attacktransparent tribe |
The post APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Malwarebytes Labs| Date: Tue, 13 Mar 2018 16:00:00 +0000
 | |
| Evading detection when distributing payloads is a key part of an effective malware campaign. Hancitor shows that it has yet another trick up its sleeve for that. Categories: Tags: filelessHancitormacromalwarepayloads |
The post Hancitor: fileless attack with a DLL copy trick appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Jérôme Segura| Date: Tue, 17 Oct 2017 15:00:16 +0000
 | |
| An old Microsoft Office feature has been brought back to the forefront as way to distribute malware without relying on macros or exploits. Categories: Tags: DDEDDEAUTOmacromalspammalwaremicrosoftOfficeword |
The post Old MS Office feature weaponized in malspam attacks appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Malwarebytes Labs| Date: Wed, 27 Sep 2017 01:06:51 +0000
 | |
| In this post, we take apart a clever set of scripts used in a targeted attack against the government of Saudi Arabia. Categories: Tags: espionagegovermentmacromicrosoft wordpowershellsaudi arabiascriptingtrojan |
The post Elaborate scripting-fu used in espionage attack against Saudi Arabia Government entity appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Malwarebytes Labs| Date: Wed, 27 Sep 2017 01:06:51 +0000
| |
| In this post, we take apart a clever set of scripts used in a targeted attack against the government of Saudi Arabia. Categories: Tags: espionagegovermentmacromicrosoft wordpowershellsaudi arabiascriptingtrojan |
The post Elaborate scripting-fu used in espionage attack against Saudi Arabia Government appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Malwarebytes Labs| Date: Thu, 31 Aug 2017 16:09:39 +0000
 | |
| Locky attempts to evade detection by relying once more on simply, yet effective user interaction. Categories: Tags: Lockymacroransomwareword |
The post Locky ransomware adds anti sandbox feature (updated) appeared first on Malwarebytes Labs.
Read MoreCredit to Author: Malwarebytes Labs| Date: Thu, 31 Aug 2017 16:09:39 +0000
| |
| Locky attempts to evade detection by relying once more on simply, yet effective user interaction. Categories: Tags: Lockymacroransomwareword |
The post Locky ransomware adds anti sandbox feature appeared first on Malwarebytes Labs.
Read More