Threat analysis – Page 18 – Computer Security Articles

PSA: New Microsoft Word 0day used in the wild

September 13, 2017 admin 0day, CVE-2017-8759, Exploits, microsoft, Microsoft Word, patch, Threat analysis, Word, Zero-Day

Credit to Author: Jérôme Segura| Date: Wed, 13 Sep 2017 22:49:19 +0000

Read more about the latest Microsoft Word Zero-Day and how to protect yourself against it.

Categories:

Tags: 0day CVE-2017-8759 microsoft microsoft word patch word zero day

(Read more…)

The post PSA: New Microsoft Word 0day used in the wild appeared first on Malwarebytes Labs.

MalwareBytes Security

Compromised LinkedIn accounts used to send phishing links via private message and InMail

September 12, 2017 admin Gmail, inmail, LinkedIn, malware, phishing, SCAM, Social engineering, Threat analysis

Credit to Author: Jérôme Segura| Date: Tue, 12 Sep 2017 17:24:39 +0000

A recent attack uses existing LinkedIn user accounts to send phishing links to their contacts via private message but also to external members via email.

Categories:

Tags: gmail inmail LinkedIn malware phishing scam Social Engineering

MalwareBytes Security

Expired domain names and malvertising

September 5, 2017 admin domain, malvertising, malware, registrant, registrar, tech support scam, Threat analysis

Credit to Author: Jérôme Segura| Date: Tue, 05 Sep 2017 15:00:08 +0000

A look at how expired domain names can be turned into a lucrative malicious traffic redirection tool.

Categories:

Tags: domain malvertising malware registrant registrar tech support scam

(Read more…)

The post Expired domain names and malvertising appeared first on Malwarebytes Labs.

MalwareBytes Security

Locky ransomware adds anti sandbox feature (updated)

August 31, 2017 admin Locky, macro, malware, ransomware, Threat analysis, Word

Credit to Author: Malwarebytes Labs| Date: Thu, 31 Aug 2017 16:09:39 +0000

Locky attempts to evade detection by relying once more on simply, yet effective user interaction.

Categories:

Tags: Locky macro ransomware word

MalwareBytes Security

Locky ransomware adds anti sandbox feature

August 31, 2017 admin Locky, macro, malware, ransomware, Threat analysis, Word

Credit to Author: Malwarebytes Labs| Date: Thu, 31 Aug 2017 16:09:39 +0000

Locky attempts to evade detection by relying once more on simply, yet effective user interaction.

Categories:

Tags: Locky macro ransomware word

(Read more…)

The post Locky ransomware adds anti sandbox feature appeared first on Malwarebytes Labs.

MalwareBytes Security

Cerber ransomware delivered in format of a different order of Magnitude

August 9, 2017 admin binary padding, Cerber, exploit kit, Exploits, gate, Magnigate, magnitude EK, ransomware, Threat analysis, XML

Credit to Author: Jérôme Segura| Date: Wed, 09 Aug 2017 15:54:54 +0000

We review a trick that the Magnitude exploit kit uses to bypass security scanners.

Categories:

Tags: binary padding cerber exploit kit gate Magnigate magnitude EK ransomware XML

MalwareBytes Security

TrickBot comes with new tricks – attacking Outlook and browsing data

August 1, 2017 admin dyreza, EternalPetya, malware, Outlook, ransomware, Threat analysis, trickbot, WannaCry

Credit to Author: Malwarebytes Labs| Date: Tue, 01 Aug 2017 19:10:43 +0000

TrickBot is still actively maintained and it is not going to leave the landscape any soon. Take a look at its new modules.

Categories:

Tags: dyreza EternalPetya malware Outlook ransomware trickbot WannaCry

MalwareBytes Security

A .NET malware abusing legitimate ffmpeg

July 12, 2017 admin .NET, ffmpeg, malware, payload, Rat, Threat analysis

Credit to Author: Malwarebytes Labs| Date: Wed, 12 Jul 2017 15:00:52 +0000

There is a growing trend among malware authors to incorporate legitimate applications in their malicious package. This time, we encountered a malware downloading a legitimate ffmpeg.

Categories:

Tags: .NET ffmpeg malware payload rat

(Read more…)

The post A .NET malware abusing legitimate ffmpeg appeared first on Malwarebytes Labs.