Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain

Credit to Author: Jérôme Segura| Date: Wed, 02 Aug 2017 15:00:06 +0000

This post shines some light on a ‘gate’ belonging to the geo-targeted Magnitude exploit kit.

Categories:

Tags:

(Read more…)

The post Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain appeared first on Malwarebytes Labs.

Read more

Report: Second quarter dominated by ransomware outbreaks

Credit to Author: Malwarebytes Labs| Date: Thu, 06 Jul 2017 19:06:53 +0000

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Tags:

(Read more…)

The post Report: Second quarter dominated by ransomware outbreaks appeared first on Malwarebytes Labs.

Read more

Ransomware families – and how to fight them

Credit to Author: Bill Brenner| Date: Fri, 23 Jun 2017 09:52:16 +0000

SophosLabs looked at the most prolific ransomware variants. And, we offer you the tools to better defend against them.<img alt=”” border=”0″ src=”https://pixel.wp.com/b.gif?host=news.sophos.com&#038;blog=834173&#038;post=39967&#038;subd=sophos&#038;ref=&#038;feed=1″ width=”1″ height=”1″ /><img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/FrSFs81iTfA” height=”1″ width=”1″ alt=””/>

Read more

Locky ransomware is back, but we already protect against it

Credit to Author: Malwarebytes Labs| Date: Fri, 21 Apr 2017 23:38:53 +0000

For a while, it appeared that Locky ransomware had completely disappeared and allowed for Cerber to take the number one spot as the most distributed piece of ransomware. But after a long absence, Locky returns in full swing.

Categories:

Tags:

(Read more…)

The post Locky ransomware is back, but we already protect against it appeared first on Malwarebytes Labs.

Read more

Cosmos Bank website compromised with RIG Exploit Kit which drops Cerber Ransomware

Credit to Author: Pradeep Kulkarni| Date: Thu, 23 Mar 2017 13:22:25 +0000

Update: The incident has been taken care of by Cosmos Bank and its website (URL) is now clean and safe to use. Compromising popular websites has become a common strategy for attackers to spread infection in a widespread fashion. Attackers exploit unpatched vulnerabilities present on web servers in order to compromise…

The post Cosmos Bank website compromised with RIG Exploit Kit which drops Cerber Ransomware appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read more

Report: Cybercrime climate shifts dramatically in first quarter

Credit to Author: Malwarebytes Labs| Date: Thu, 13 Apr 2017 09:00:09 +0000

The first quarter of 2017 brought with it some significant changes to the threat landscape and we aren’t talking about heavy ransomware distribution either. Threats which were previously believed to be serious contenders this year have nearly vanished entirely, while new threats and infection techniques have forced the security community to reconsider collection and analysis efforts.

Categories:

Tags:

(Read more…)

The post Report: Cybercrime climate shifts dramatically in first quarter appeared first on Malwarebytes Labs.

Read more

World Backup Day is as good as any to back up your data

Credit to Author: msft-mmpc| Date: Tue, 28 Mar 2017 21:04:31 +0000

In today’s security landscape, there are more threats to data than ever before. Beyond corruption caused by hardware or human failure, malware and cyberattacks can put data in serious danger.  That’s why it’s imperative for enterprises, small-and-medium businesses, and individuals to back up data. It must be implemented systematically, not just on World Backup Day,…

Read more

Ransomware operators are hiding malware deeper in installer packages

Credit to Author: msft-mmpc| Date: Thu, 16 Mar 2017 03:15:46 +0000

We are seeing a wave of new NSIS installers used in ransomware campaigns. These new installers pack significant updates, indicating a collective move by attackers to once again dodge AV detection by changing the way they package malicious code. These changes are observed in installers that drop ransomware like Cerber, Locky, and others. Cybercriminals have…

Read more