ShadowBrokers – Computer Security Articles

How threat actors are using SMB vulnerabilities

December 17, 2018 admin 101, Business, EternalBlue, EternalChampion, EternalRomance, Exploits, NSA tools, ShadowBrokers, SMB vulnerabilities, vulnerabilities

Credit to Author: Pieter Arntz| Date: Fri, 14 Dec 2018 16:00:00 +0000

SMB vulnerabilities have been so successful for criminals that they’ve been used in some of the most devastating ransomware and Trojan attacks of the last two years. Learn how they work and how your organization can protect against them.

Categories:

Tags: EternalBlue EternalChampion EternalRomance exploits NSA tools ShadowBrokers SMB vulnerabilities vulnerabilities

(Read more…)

The post How threat actors are using SMB vulnerabilities appeared first on Malwarebytes Labs.

MalwareBytes Security

Report: Second quarter dominated by ransomware outbreaks

July 6, 2017 admin ad fraud, adam kujawa, Adam McNeil, Adware, Amazon Phishing, Armando Orozco, astrum, boaxxee, breach, breaches, Cerber, cybercrime tactics & techniques, cybercrime tactics and techniques, dok, DoublePulsar, EK, EternalBlue, EternalPetya, exploit kit, Findzip, fireball, handbrake, Jaff, Jean-Philippe Taggart, Jerome Segura, Kovter, Locky, Magnitude, Malwarebytes, malwarebytes labs, Malwarebytes news, Marcelo Rivero, Nathan Collier, NotPetya, NSA, nymain, Petya, Pieter Artnz, proton, proton RAT, Q2 2017, RIG, second quarter, ShadowBrokers, Tamy Stewart, tech support scams, Thomas Reed, Troldesh, WannaCry, WDFLoad, William Tsing

Credit to Author: Malwarebytes Labs| Date: Thu, 06 Jul 2017 19:06:53 +0000

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Malwarebytes news

Tags: ad fraud adam kujawa Adam McNeil adware Amazon Phishing Armando Orozco astrum boaxxee breach breaches cerber cybercrime tactics & techniques cybercrime tactics and techniques dok DoublePulsar EK EternalBlue EternalPetya exploit kit Findzip fireball handbrake Jaff Jean-Philippe Taggart Jerome Segura kovter Locky Magnitude Malwarebytes malwarebytes labs Marcelo Rivero Nathan Collier NotPetya NSA nymain petya Pieter Artnz proton proton RAT Q2 2017 RIG second quarter ShadowBrokers Tamy Stewart tech support scams Thomas Reed Troldesh WannaCry WDFLoad William Tsing

MalwareBytes Security

All this EternalPetya stuff makes me WannaCry

July 6, 2017 admin attribution, cybercrime, decryption, DoublePulsar, EternalBlue, EternalPetya, EternalRomance, hasherazade, m.e.doc, malware, NotPetya, NSA, Petya, Petya ransomware, ShadowBrokers, WannaCry, WannaCrypt, WannaCryptor

Credit to Author: Adam McNeil| Date: Thu, 06 Jul 2017 18:15:09 +0000

Get more background on the EternalPetya ransomware. Learn about its origin, attribution, decryption, and the methods of infection and propagation.

Categories:

Tags: attribution decryption DoublePulsar EternalBlue EternalPetya EternalRomance hasherazade m.e.doc NotPetya NSA petya Petya ransomware ShadowBrokers WannaCry WannaCrypt WannaCryptor

(Read more…)

The post All this EternalPetya stuff makes me WannaCry appeared first on Malwarebytes Labs.

MalwareBytes Security

How did the WannaCry Ransomworm spread?

May 19, 2017 admin Botnet, cybercrime, DoublePulsar, EternalBlue, exploit, Exploits, Jaff ransomware, malspam, malware, Necurs botnet, NSA, ransomware, ShadowBrokers, spam, WannaCry, WannaCrypt

Credit to Author: Adam McNeil| Date: Fri, 19 May 2017 14:00:45 +0000

Security researchers have had a busy week since the WannaCry ransomware outbreak that wreaked havoc on computers worldwide. How did it all happen?

Categories:

Tags: botnet DoublePulsar EternalBlue exploit Jaff ransomware malspam malware Necurs botnet NSA ransomware ShadowBrokers spam WannaCry WannaCrypt

(Read more…)

The post How did the WannaCry Ransomworm spread? appeared first on Malwarebytes Labs.

Kaspersky Security

Exploits are everywhere — is your business safe?

May 11, 2017 admin Business, enterprise security, Equation Group, Exploits, news, phishing, reports, ShadowBrokers

Credit to Author: Jeffrey Esposito| Date: Mon, 24 Apr 2017 13:39:17 +0000

The threat landscape is always evolving. How can you protect your business?

MalwareBytes Security

ShadowBrokers releases more stolen information

April 14, 2017 admin Cia, cybercrime, Exploits, hacking, more information, NSA, NSA-FTS327, release, ShadowBrokers, Snowden, windows

Credit to Author: Adam McNeil| Date: Fri, 14 Apr 2017 18:03:09 +0000

ShadowBrokers shocked the security world again today by releasing another cache of exploits, files, and operational documents purportedly stolen from Equation Group last summer. As you may recall from our earlier publications, Equation Group is reportedly a clandestine hacking group that has been linked with NSA hacking tools.

Categories:

Tags: CIA exploits more information NSA NSA-FTS327 release ShadowBrokers snowden windows

(Read more…)

The post ShadowBrokers releases more stolen information appeared first on Malwarebytes Labs.

MalwareBytes Security

ShadowBrokers fails to collect 1M bitcoins – releases stolen information

April 10, 2017 admin cybercrime, Equation Group, Exploits, hack, hacking, NSA, opsec, president trump, ShadowBrokers

Credit to Author: Adam McNeil| Date: Mon, 10 Apr 2017 17:49:20 +0000

ShadowBrokers finally made good on their promise to release the decryption key to unlock the stolen ‘auction’ file purportedly filled with NSA hacking tools.

Categories:

Tags: Equation Group exploits hack hacking NSA opsec President Trump ShadowBrokers