Powershell – Page 5 – Computer Security Articles

Learning PowerShell: The basics

July 11, 2017 admin 101, basic, cmdlet, How-tos, malware, Pieter Arntz, Powershell, restrictions

Credit to Author: Pieter Arntz| Date: Tue, 11 Jul 2017 15:00:15 +0000

Get acquainted with some of the basic principles of Powershell and get prepared for some basic usage of this versatile tool that is available on all modern Windows systems.

Categories:

Tags: basic cmdlet malware Pieter Arntz powershell restrictions

(Read more…)

The post Learning PowerShell: The basics appeared first on Malwarebytes Labs.

Microsoft Security

Windows Defender ATP thwarts Operation WilySupply software supply chain cyberattack

May 4, 2017 admin Advanced persistent threats, alert timelines, Altair Technologies EvLog, Antimalware research for IT pros and enthusiasts, Cyberattack, ESTsoft ALZip, Evil Grade, finance, financials, high technology, Kerberoast, MAPP, Meterpreter, Mimikatz, MSRC, Operation WilySupply, pen-testing tools, Powershell, process trees, research, Rivit, SimDisk, software supply chain, ue.exe, update channel, updater, WDATP, Windows Defender Advanced Threat Protection, Windows Defender ATP

Credit to Author: msft-mmpc| Date: Thu, 04 May 2017 16:29:18 +0000

Several weeks ago, the Windows Defender Advanced Threat Protection (Windows Defender ATP) research team noticed security alerts that demonstrated an intriguing attack pattern. These early alerts uncovered a well-planned, finely orchestrated cyberattack that targeted several high-profile technology and financial organizations. An unknown attacker was taking advantage of a silent yet effective attack vector: the compromised…

MalwareBytes Security

Report: Cybercrime climate shifts dramatically in first quarter

April 13, 2017 admin Adware, Android malware, celebgate, Cerber, Chris Boyd, cybercrime, cybercrime tactics and techniques, dridex, eitest, exit scam, exploit kit, fappening, Findzip, hiddenads.lck, hoeflertext, intra market fraud, jisut, Locky, mac malware, malspam, malware, Malwarebytes, malwarebytes labs, necurs, potentially unwanted programs, Powershell, PUP, Q1 2017, ransomware, RIG exploit kit, sage, Social engineering, spora, survey scams, tech support scammers, Threat analysis, vault 7, windows malware, WWE dump

Credit to Author: Malwarebytes Labs| Date: Thu, 13 Apr 2017 09:00:09 +0000

The first quarter of 2017 brought with it some significant changes to the threat landscape and we aren’t talking about heavy ransomware distribution either. Threats which were previously believed to be serious contenders this year have nearly vanished entirely, while new threats and infection techniques have forced the security community to reconsider collection and analysis efforts.

Categories:

Tags: adware android malware celebgate cerber Chris Boyd cybercrime cybercrime tactics and techniques dridex eitest exit scam exploit kit fappening Findzip hiddenads.lck hoeflertext intra market fraud jisut Locky mac malware malspam Malwarebytes malwarebytes labs necurs potentially unwanted programs powershell PUP Q1 2017 ransomware RIG exploit kit sage Social Engineering Spora survey scams tech support scammers vault 7 windows malware WWE dump

Microsoft Security

Improved scripts in .lnk files now deliver Kovter in addition to Locky

February 2, 2017 admin .Lnk embedded PowerShell command, Antimalware research for IT pros and enthusiasts, Kovter, Locky, Powershell, ransomware

Cybercriminals are using a combination of improved script and well-maintained download sites in trying to install Locky and Kovter on more computers. A few months ago, we reported an email campaign distributing .lnk files with a malicious script that downloaded Locky ransomware on target computers. Opening the malicious .lnk files executed a PowerShell script that…