James Webb telescope images used to hide malware

Categories: News

Categories: Threats

Tags: Msdllupdate.exe

Tags: macros

Tags: James Webb

Tags: certutil

Tags: Golang

Tags: base64

Tags: steganography

Tags: OxB36F8GEEC634.jpg

In a recent malware campaign, images from the James Webb telescope were used to hide malware.

(Read more…)

The post James Webb telescope images used to hide malware appeared first on Malwarebytes Labs.

Read more

Sysrv botnet is out to mine Monero on your Windows and Linux servers

Credit to Author: Pieter Arntz| Date: Wed, 18 May 2022 12:55:00 +0000

The Sysrv botnet has been developing over the last years, and has become a multi-platform botnet that specializes in Monero cryptomining.

The post Sysrv botnet is out to mine Monero on your Windows and Linux servers appeared first on Malwarebytes Labs.

Read more

New Golang brute forcer discovered amid rise in e-commerce attacks

Credit to Author: Jérôme Segura| Date: Tue, 26 Feb 2019 16:00:08 +0000

E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force.

Categories:

Tags:

(Read more…)

The post New Golang brute forcer discovered amid rise in e-commerce attacks appeared first on Malwarebytes Labs.

Read more

Analyzing a new stealer written in Golang

Credit to Author: hasherezade| Date: Wed, 30 Jan 2019 17:00:00 +0000

We captured a new information-stealing malware written in Golang (Go). Read up on our analysis of its functionality, as well as the tools researchers can use to unpack malware written in this relatively new programming language.

Categories:

Tags:

(Read more…)

The post Analyzing a new stealer written in Golang appeared first on Malwarebytes Labs.

Read more

Who is Anna-Senpai, the Mirai Worm Author?


On September 22, 2016, this site was forced offline for nearly four days after it was hit with “Mirai,” a malware strain that enslaves poorly secured Internet of Things (IoT) devices like wireless routers and security cameras into a botnet for use in large cyberattacks. Roughly a week after that assault, the individual(s) who launched that attack — using the name “Anna Senpai” — released the source code for Mirai, spawning dozens of copycat attack armies online. After months of digging, KrebsOnSecurity is now confident to have uncovered Anna Senpai’s real-life identity, and the identity of at least one co-conspirator who helped to write and modify the malware.

Read more