dcsimg
December 9, 2019

A week in security (December 2 – December 8)

Last week on Malwarebytes Labs, we took a look at a new version of the IcedID Trojan, described web skimmers up to no good, and took a deep dive into containerization. We also explored a report bringing bad news for organizations and insider threats, and threw a spotlight on a video game phish attack. Other cybersecurity news Delivery firm runs into trouble: A security researcher was able to pull … [Read more...]

Filed Under: a week in security, amazon, bank, buckets, phish, Week in security, weekly roundup, xmas
December 2, 2019

A week in security (November 25 – December 1)

Last week on Malwarebytes Labs, we discussed why the notion of “data as property” may potentially hurt more than help, homed in on sextortion scammers getting more creative, and explored the possible security risks Americans might face if the US changed to universal healthcare coverage. Other cybersecurity news The country of Venezuela turns to cybercrime as their economy … [Read more...]

Filed Under: a week in security, ad blockers, awis, data as property, dexphot, energy sector security issues, iphone phishing, iphone phishing scam, nursing home ransomware, sextortion scammers, trickbot, universal healthcare security, venezuela cybercrime
November 25, 2019

A week in security (November 18 – 24)

Last week on Malwarebytes Labs, we looked at stalkerware’s legal enforcement problem, announced our cooperation with other security vendors and advocacy groups to launch Coalition Against Stalkerware, published our fall 2019 review of exploit kits, looked at how Deepfake on LinkedIn makes for malign interference campaigns, rounded up our knowledge about the Disney+ security and service issues, … [Read more...]

Filed Under: a week in security, Coalition Against Stalkerware, data leaks, deepfake, Disney+, exploit kits, IoT, juice jacking, LinkedIn, ransomware, stalkerware, web skimmer
November 18, 2019

A week in security (November 11 – 17)

Last week on Malwarebytes Labs, we offered statistics and information on a sneaky new Trojan malware for Android, inspected a bevy of current Facebook scams, and explained the importance of securing food and agriculture infrastructure. We also released our latest report on cybercrime tactics and techniques, offering new telemetry about the many cybersecurity threats facing the healthcare … [Read more...]

Filed Under: a week in security, CTNT, cybercrime tactics & techniques, cybercrime tactics and techniques, cybersecurity, infrastructure, Orcus RAT, password, Proofpoint, security, Trojans
November 11, 2019

A week in security (November 4 – November 10)

Last week on Malwarebytes Labs, we announced the launch of Malwarebytes 4.0, tackled data privacy legislation, and explored some of the ways robocalls come gunning for your data and your money. We also laid out the steps involved in popular vendor email compromise attacks. Other cybersecurity news Bug bounty bonanza: Rockstar Games open up their bounty program to include the newly-released Red … [Read more...]

Filed Under: a week in security, awis, cyber, facebook, fake news, Hacking, Mobile, round up, social media, twitter, Week in security
November 4, 2019

A week in security (October 28 – November 3)

Last week on Malwarebytes Labs, we celebrated the birth of the Internet 50 years ago, highlighted reports about the US Federal Trade Commission (FTC) filing a case against stalkerware developer Retina-X, issued a PSI on disaster donation scams, looked at the top cybersecurity challenged SMBs face, and provided guidance to journalists on how they can defend themselves against threat … [Read more...]

Filed Under: a week in security, Adobe Creative Cloud, advanced persistent threats, American Cancer Society, Android, APT, blogger, cybersecurity challenges, data breach, disaster donation scam, emoji app, esports, Fancy Bear, fraud, FTC, Gafgyt, internet, journalists, MaaS, Magecart, Malware-as-a-Service, MessageTap, Nuclear Power Corp of India, Raccoon, Retina-X, sextortion, SMB, stalkerware, US Federal Trade Commission, wordpress
October 21, 2019

A week in security (October 14 – 20)

Last week on Malwarebytes Labs, we tried to unlock the future of the password (its vulnerabilities, current alternatives, and possible future disappearance), analyzed the lagging response by many businesses in adopting a patch for Pulse VPN vulnerability, looked at Instagram’s bulked-up security against phishing emails scams, and were reminded that ransomware remains a dominant threat facing … [Read more...]

Filed Under: a week in security, amazon, dark web, domestic abuse, domestic abuse survivor, domestic abuse survivors, domestic violence, facebook, facial recognition, Instagram, jackpot, jackpotting, kindle, Mark Zuckerberg, national cybersecurity awareness month, National domestic violence awareness month, Oracle, password, passwords, phish, phishing, phishing scam, ransomware, tor, Tor browser, US Customs and Border Enforcement, vpn, vulnerabilities, vulnerability
October 14, 2019

A week in security (October 7 – 13)

Last week on Malwarebytes Labs, we peered into the possible future of cybersecurity insurance, described the process for securing today’s managed service provider, and provided an in-depth explainer on the business espionage tactic known as “war shipping.” Further, in considering the intersection of National Cybersecurity Awareness Month and National Domestic Violence Awareness Month, we gave … [Read more...]

Filed Under: a week in security, amazon, body cams, bots, chrome, cybersecurity, facial recognition, GitHub, Google, ice, Insurance, insurance cybersecurity, managed service providers, multi-factor authentication, national cybersecurity awareness month, National domestic violence awareness month, NCSAM, police body cams, security, stalkerware, twitter, US Immigration and Customs Enforcement, war shipping
October 7, 2019

A week in security (September 30 – October 6)

Last week on Malwarebytes Labs, Malwarebytes renewed its pledge to fight stalkerware for National Cybersecurity Awareness (NCSA) and Domestic Violence Awareness Month. We also looked into what security orchestration is and reported about partnering with security firm, HYAS, to determine the relationship between Magecart Group 4 and Cobalt, the infamous APT group behind sophisticated financially … [Read more...]

Filed Under: a week in security, Adwind RAT, APT, Cobalt, consumer behavior study, DaaS, disinformation-as-a-service, domestic violence awareness month, GhostCat-3PC, Google Alert, HYAS, Insikt Group, Magecart Group 4, Microsoft Office, Microsoft Word, National Cyber Security Centre, national cybersecurity awareness month, NCSAM, NCSC, ODT, OpenDocument Text, ransomware, robocall, scams in ads, security orchestration, Security Research Labs, simjacking, SMS-based attacks, SRLabs, stalkerware, The Media Trust, VPN vulnerabilities
September 30, 2019

A week in security (September 23 – 29)

Last week on Labs, we highlighted an Emotet campaign using Snowden’s new book as a lure, discussed how 15,000 webcams are vulnerable to attack, how insurance data security laws skirt political turmoil, and how the new iOS exploit checkm8 allows permanent compromise of iPhones. Other cybersecurity news Google said its quantum computer outperformed conventional models, but it will still be … [Read more...]

Filed Under: a week in security, ccleaner, checkm8, doordash, emotet, ihandy, insurance data, nodersok, webcams
Next Page »