dcsimg
June 20, 2018

Fake Fortnite for Android links found on YouTube

The extremely popular video game Fortnite is coming to Android sometime this summer, and the fanbase is going wild. Not surprisingly, mobile malware developers are taking advantage. Already, there are several videos on YouTube with links claiming to be versions of Fortnite for Android, despite the fact the game has yet to be released on this platform. Swati Khandelwal of The Hacker News highlights … [Read more...]

Filed Under: Android, cybercrime, fakeapp, FakeFortnite, fortnite, Mobile, trojan
June 20, 2018

PSA: Recruitment portals and job sites at risk

Readers of Malwarebytes Labs aren’t new to the social engineering tactics of malcontents to get users to respond to fake job offers via email. In 2014, we wrote about spam claiming to be from the recipient’s supposed work application to a “Career Services Department,” only to be redirected to a site where a potentially unwanted program (in the guise of a video player) was … [Read more...]

Filed Under: cybercrime, job site vulnerabilities, recruitment portal flaws, Social engineering
June 15, 2018

UK law enforcement: an uphill struggle to fight hackers

About 16 years ago in the UK, I walked into a local police station to report a computer crime, because walking into local police stations is how they did things back then. There may well also have been penny farthing bicycles, real pea souper fogs, Mary Poppins, and Jack the Ripper, though I could well be wrong on those last two. I was greeted at the incident report desk by a bemused officer on … [Read more...]

Filed Under: cybercrime, funding, Hacking, law enforcement, police, uk, uk law enforcement
June 13, 2018

VPNFilter malware still making waves

Last month, a piece of malware called VPNFilter caused chaos for owners of MikroTik, Lynksys, TP-Link, and Netgear equipment. Roughly 500,000 devices worldwide fell victim, with the unwanted parasite able to listen to traffic, steal credentials, damage devices, and more. Until patches started to roll out, the options weren’t great; as one of our researchers, Jovi Umawing told SCMagazine … [Read more...]

Filed Under: cybercrime, Malware, router, routers, vpnfilter
June 12, 2018

Exploit kits: Spring 2018 review

Since our last report on exploit kits, there have been some new developments with the wider adoption of the February Flash zero-day, as well as the inclusion of a new exploit for Internet Explorer. We have not seen that many changes in the drive-by landscape for a long time, although these are the results of improvements closely tied to malspam campaigns and exploits embedded within Microsoft … [Read more...]

Filed Under: cybercrime, EK, EKs, exploit kits, Exploits, grandsoft, GreenFlash Sundown, Magnitude, RIG
June 6, 2018

PSA: Users with landlines are more vulnerable to scams

It’s time to have “the talk” with your parents, relatives, and loved ones. Anyone still using a landline must be warned: having a home phone makes you particularly vulnerable to scams. We know here at Malwarebytes that our readers are often the unofficial “IT” department for their families, relatives, and friends. While suggesting to your folks that they discontinue having a landline might not go … [Read more...]

Filed Under: 419 scams, cybercrime, land line scam, Malwarebytes news, Nigerian Prince scam, phone scam, Social engineering, tech support scam
June 5, 2018
June 4, 2018

Mobile Menace Monday: A race to hidden ads

Who doesn’t love a good motorcycle racing game, right? How about one easily available on Google Play, a “safe” place for all your Android app desires? How about a bike racing game that sticks with you so much, you can’t easily uninstall it? And it displays hidden ads? Wait, what!? That’s right! In the slideshow below, a game titled Motorcycle Race—Bike Race (package name: com.bikeme.racersm) has … [Read more...]

Filed Under: Android, cybercrime, Device Administrator, Hidden Ads, Mobile, mobile menace monday, triple m, uninstall
June 1, 2018

Blocks for Flash and others coming to Office 365

If you’re a user of Microsoft Office products such as Word and Excel, you’re probably aware that they’ve been used as inroads for malware for a long, long time. But what about malware attacks without Macros? Sure. Macro malware for Macs? That, too. Malicious documents and spying tools? Danger, Will Robinson. We have some good news and some bad news. The good news is that monthly … [Read more...]

Filed Under: 365, controls, cybercrime, Exploits, flash, macros, Microsoft, Office, shockwave, silverlight
May 31, 2018

A conversation with America Geeks

Thanks to NeeP for contributing significant research. You can check out NeeP’s YouTube channel here. Malwarebytes has written quite a bit about tech support scammers, typically focusing on new scam techniques as they arise with new threat actor groups. But sometimes our research discovers scammers who persist with the same techniques, the same pitches, and the same IP abuse, no matter how … [Read more...]

Filed Under: America Geeks, cybercrime, scammers, Social engineering, tech support scammers, tech support scams
Next Page »