Credit to Author: Sophos Italia| Date: Thu, 02 May 2019 08:30:19 +0000
Intercept X Advanced con EDR ora è in grado di fermare tutte le esecuzioni di PowerShell in modo che possano essere controllate e analizzate<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/yVbV_8cXDmE” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Seth Geftic| Date: Wed, 24 Apr 2019 15:22:50 +0000
Intercept X Advanced with EDR now captures all PowerShell executions so that they can be reviewed and analyzed.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/eJM7U_zUOS8″ height=”1″ width=”1″ alt=””/>
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 21 Jan 2019 16:48:38 +0000
 | |
| A roundup of last week’s security news from January 14 to 20, including APT10, Fallout EK, Colllection 1 data, Youtube challenges, hosting malicious sites and a Fortnite security flaw. Categories: Tags: APT10ArsTechnicaBleepingComputerCoinDeskcollection 1cryptopiacve-2019-0543DASFallout EKfortnitegarminGarmin watchhostingHTTPSoregonpowershellPowerShell Team BlogSC Mediashutdowntelegramthreadxyoutube |
The post A week in security (January 14 – 20) appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Thu, 17 Jan 2019 19:51:27 +0000
 | |
| The Fallout exploit kit is back with some noteworthy improvements. Categories: Tags: CVE-2018-15982EKexploitexploit kitsFalloutpowershell |
The post Improved Fallout EK comes back after short hiatus appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Wed, 05 Dec 2018 13:01:44 +0000
 | |
| Malwarebytes released a new report called “Under the Radar: The Future of Undetected Malware” that takes a look at current threats using next generation tricks, and how current security technologies stand up to these threats, as well as the threats to come. Categories: Tags: apacartificial intelligencebehavioral detectionblocking at deliveryemeaemotetEternalBlueexploitsfilelessfileless malwarefuture of cybercrimemalicious spamMalwarebytespowershellreportsamsamsorebrecttexastrickbotunder the radarweb blockingweb protectionworm |
The post New ‘Under the Radar’ report examines modern threats and future technologies appeared first on Malwarebytes Labs.
Read moreCredit to Author: hasherezade| Date: Mon, 12 Nov 2018 15:00:22 +0000
 | |
| Trojan.TrickBot has been present in the threat landscape from quite a while. We wrote about its first version in October 2016. From the beginning, it was a well organized modular malware, written by developers with mature skills. It is often called a banker, however its modular structure allows to freely add new functionalities without modifying… Categories: Tags: BotKeygandcrabgandcrab ransomwareIFL pluginpkcs11.txtpowershellprofiles.iniSecurityPreloadState.txtsvchostsvchost.exetrickbottrickbot_config_decoder.pyTrojan.TrickBotXOR layer |
The post What’s new in TrickBot? Deobfuscating elements appeared first on Malwarebytes Labs.
Read moreCredit to Author: Vasilios Hioureas| Date: Wed, 29 Aug 2018 16:48:35 +0000
 | |
| In this series of articles, we provide an in-depth discussion of fileless malware and their related attacks. In part one, we cover a brief overview of the problems with and general features of fileless malware, laying the groundwork for technical analysis of various samples employing fileless and semi-fileless methods. Categories: Tags: file historyfileless infectionsfileless malwarefileless malware attackskovtermagnitude EKpowelikspowershellRAMsamsamsamsam ransomwaresemi-filelessSOC teamwindows |
The post Fileless malware: getting the lowdown on this insidious threat appeared first on Malwarebytes Labs.
Read more
Credit to Author: Andrew Brandt| Date: Tue, 21 Aug 2018 16:56:34 +0000
Even using an older version of our anti-exploit technology will protect you if you open a malicious document with the CVE-2018-8414 exploit embedded in it<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/qXrxxFkjKfc” height=”1″ width=”1″ alt=””/>
Read more