Threat analysis – Page 20 – Computer Security Articles

Snake malware ported from Windows to Mac

May 5, 2017 admin Adobe Flash Player, apple, Mac, Mac Trojan, malware, Snake, Threat analysis, Trojan, Turla, Uroburos

Credit to Author: Thomas Reed| Date: Fri, 05 May 2017 14:00:41 +0000

Snake, also known as Turla and Uroburos, is backdoor malware that has been around and infecting Windows systems since at least 2008. It is thought to be Russian governmental malware and on Windows is highly-sophisticated. It was even seen infecting Linux systems in 2014. Now, it appears to have been ported to Mac.

Categories:

Tags: Adobe Flash Player Apple mac Mac Trojan malware Snake trojan Turla Uroburos

(Read more…)

The post Snake malware ported from Windows to Mac appeared first on Malwarebytes Labs.

MalwareBytes Security

Another OSX.Dok dropper found installing new backdoor

May 1, 2017 admin apple, Dokument.app, Mac, mac malware, Mac Trojan, malware, OSX.Dok, Threat analysis, Trojan

Credit to Author: Thomas Reed| Date: Mon, 01 May 2017 18:16:41 +0000

On Friday a sophisticated Mac Trojan was discovered, called OSX.Dok, which installs malware designed to intercept all HTTP and HTTPS traffic. This morning, Adam Thomas, a Malwarebytes researcher, found a variant of the OSX.Dok dropper that behaves altogether differently and installs a completely different payload.

Categories:

Tags: Apple Dokument.app mac mac malware Mac Trojan malware OSX.Dok trojan

MalwareBytes Security

New OSX.Dok malware intercepts web traffic

April 28, 2017 admin apple, Dokument.zip, Mac, MacOS, malware, OSX.Dok, phishing, Threat analysis

Credit to Author: Thomas Reed| Date: Fri, 28 Apr 2017 18:00:07 +0000

Most Mac malware tends to be unsophisticated. Although it has some rather unpolished and awkward aspects, a new piece of Mac malware, dubbed OSX.Dok, breaks out of that typical mold.

Categories:

Tags: Apple Dokument.zip mac macOS malware OSX.Dok phishing

(Read more…)

The post New OSX.Dok malware intercepts web traffic appeared first on Malwarebytes Labs.

MalwareBytes Security

Elusive Moker Trojan is back

April 21, 2017 admin EK, exploit kit, malware, Moker, Rat, RIG EK, Threat analysis, Trojan

Credit to Author: Malwarebytes Labs| Date: Fri, 21 Apr 2017 18:44:58 +0000

We finally have gotten our hands on a sample of Moker Trojan (that was discovered in 2015). This article will be a deep dive in its capabilities.

Categories:

Tags: EK exploit kit malware Moker rat RIG EK trojan

(Read more…)

The post Elusive Moker Trojan is back appeared first on Malwarebytes Labs.

MalwareBytes Security

Binary Options malvertising campaign drops ISFB banking Trojan

April 20, 2017 admin binary options, dreambot, EK, exploit kit, Exploits, Gozi, ISFB, malvertising, malware, RIG, RIG exploit kit, Threat analysis, Trojan

Credit to Author: Jérôme Segura| Date: Thu, 20 Apr 2017 15:00:55 +0000

We take a look at a widespread and yet stealthy malvertising campaign distributing the ISFB banking Trojan via decoy websites.

Categories:

Tags: binary options dreambot EK exploit kit Gozi ISFB malvertising malware RIG RIG exploit kit trojan

MalwareBytes Security

Report: Cybercrime climate shifts dramatically in first quarter

April 13, 2017 admin Adware, Android malware, celebgate, Cerber, Chris Boyd, cybercrime, cybercrime tactics and techniques, dridex, eitest, exit scam, exploit kit, fappening, Findzip, hiddenads.lck, hoeflertext, intra market fraud, jisut, Locky, mac malware, malspam, malware, Malwarebytes, malwarebytes labs, necurs, potentially unwanted programs, Powershell, PUP, Q1 2017, ransomware, RIG exploit kit, sage, Social engineering, spora, survey scams, tech support scammers, Threat analysis, vault 7, windows malware, WWE dump

Credit to Author: Malwarebytes Labs| Date: Thu, 13 Apr 2017 09:00:09 +0000

The first quarter of 2017 brought with it some significant changes to the threat landscape and we aren’t talking about heavy ransomware distribution either. Threats which were previously believed to be serious contenders this year have nearly vanished entirely, while new threats and infection techniques have forced the security community to reconsider collection and analysis efforts.

Categories:

Tags: adware android malware celebgate cerber Chris Boyd cybercrime cybercrime tactics and techniques dridex eitest exit scam exploit kit fappening Findzip hiddenads.lck hoeflertext intra market fraud jisut Locky mac malware malspam Malwarebytes malwarebytes labs necurs potentially unwanted programs powershell PUP Q1 2017 ransomware RIG exploit kit sage Social Engineering Spora survey scams tech support scammers vault 7 windows malware WWE dump

MalwareBytes Security

Sundown EK gone missing, Terror EK flavours seen in active drive-by campaigns

April 11, 2017 admin Exploits, exploits kits, Sundown EK, Terror EK, Threat analysis

Credit to Author: Jérôme Segura| Date: Tue, 11 Apr 2017 21:12:19 +0000

With another player out at the moment, we take a look at a rebranded exploit kit in current malware campaigns.

Categories:

Tags: exploits kits Sundown EK Terror EK

MalwareBytes Security

USPS-themed malspam now delivering 1-2-3 Knock-out

April 10, 2017 admin JavaScript, malspam, malware, Threat analysis, Trojan, Trojan.Boaxxe, Trojan.Kovter, USPS

Credit to Author: Adam McNeil| Date: Mon, 10 Apr 2017 15:00:43 +0000

We’ve detected an uptick in USPS-themed malspam walloping users with a 1-2-3 knock-out of nasty malware designed to infiltrate your system and steal all your most valuable information. This malware-laced email is actively being distributed with various Subject and Body messages containing references to missing and/or late USPS parcels.

Categories:

Tags: JavaScript malspam malware trojan Trojan.Boaxxe Trojan.Kovter USPS

(Read more…)

The post USPS-themed malspam now delivering 1-2-3 Knock-out appeared first on Malwarebytes Labs.