dcsimg
January 24, 2020

Tampa Bay Times hit with Ryuk ransomware attack

Florida newspaper The Tampa Bay Times suffered a Ryuk ransomware attack Thursday, making it the latest major victim of the notorious ransomware family that continues to rise in popularity. Curiously, the paper is at least the third Florida-based Ryuk victim in the past year. The attack, which The Tampa Bay Times reported on itself, did not result in any breached data. Sensitive customer … [Read more...]

Filed Under: Chicago Tribune, CrowdStrike, DCH Health System, emotet, Imperial County, Imperial County California, Lake City, Lake City Florida, Los Angeles Times, ProPublica, ransom, Ransom.Ryuk, ransomware, ryuk, Ryuk ransomware, Tampa Bay Times, tribune publishing, trickbot, Trojan.TrickBot, US Coast Guard
January 20, 2020

A week in security (January 13 – 19)

Last week on Malwarebytes Labs, we taught you how to prevent a rootkit attack, explained what data enrichment means, informed you about new rules on deepfakes in the US, and demonstrated how backdoors in elastic servers expose private data. Other cybersecurity news An online group of cybersecurity analysts calling themselves Intrusion Truth have revealed information about their fourth … [Read more...]

Filed Under: a week in security, apt40, Cisco, Citrix, data enrichment, deepfakes, elastic servers, emotet, rootkit, travelex, weleakinfo
January 15, 2020

Frankfurt’s IT networks grinds to a halt amid Emotet attack

The week before Christmas, Frankfurt saw the unwelcome return of Emotet, a banking trojan that recently came out of hiding to terrorise organisations across the globe.  The malware spread through the city’s systems, forcing officials to shut down its IT network, causing huge delays to government services.  This is the fourth time in recent weeks that Emotet has struck in Germany, following attacks … [Read more...]

Filed Under: breach, Breaches and Hacks, data breach, data breach notification, emotet, Malware
December 19, 2019

A decade in cybersecurity fails: the top breaches, threats, and ‘whoopsies’ of the 2010s

This post was co-authored by Wendy Zamora and Chris Boyd. All opinions expressed belong to your mom. Back in the days before climate change stretched frigid winter months directly into the insta-sweat of summer, there was a saying about March: in like a lamb, out like a lion. The same might be said about the last decade in cybersecurity fails. What kicked off with a handful of stories about … [Read more...]

Filed Under: ashley madison, ashley madison hack, Awareness, BadRabbit, cambridge analytica, cryptolocker, cryptolocker ransomware, Data privacy, Edward Snowden, emotet, Exploits, facebook, hacktivism, mat honan, NotPetya, NSA, nsa spying, nsa surveillance, NSA tools, playstation breach, playstation hack, ransomware, ryuk, Ryuk ransomware, security fails, shadow brokers, social media, sony, sony pictures hack, surveillance, target breach, target hack, trickbot, triple threat, WannaCry
December 13, 2019

Threat spotlight: The curious case of Ryuk ransomware

Ryuk. A name once unique to a fictional character in a popular Japanese comic book and cartoon series is now a name that appears in several rosters of the nastiest ransomware to ever grace the wild web. For an incredibly young strain—only 15 months old—Ryuk ransomware gaining such notoriety is quite a feat to achieve. Unless the threat actors behind its campaigns call it quits, too—Remember … [Read more...]

Filed Under: AES, average ransom amount, BitPaymer, BitPaymer ransomware, CryptoTech, Death Note, emotet, Far Eastern International Bank, FEIB, Gabriela Nicolao, gandcrab, Hermes, Hermes 2.1, Luciano Martins, pseudo-ransomware, Ransom.Ryuk, rdp, remote desktop protocol, RSA, Russian threat actors, ryuk, Ryuk ransomware, Shinigami’s revenge: the long tail of the Ryuk ransomware, threat spotlight, tribune publishing, trickbot, Wake-on-LAN, Wizard Spider, WoL
November 13, 2019

Labs report finds cyberthreats against healthcare increasing while security circles the drain

The team at Malwarebytes Labs is at it again, this time with a special edition of our quarterly CTNT report—Cybercrime tactics and techniques: the 2019 state of healthcare. Over the last year, we gathered global data from our product telemetry, honeypots, threat intelligence, and research efforts, focusing on the top threat categories and families that plagued the medical industry, as well as the … [Read more...]

Filed Under: APIs, biotech, EHR, electronic health record, emotet, health apps, Health Insurance Portability and Accessibility, health records, healthcare, healthcare cybersecurity, healthcare security, HIPAA, medical device, medical device threat, medical management apps, phishing, Reports, trickbot, trojan malware
September 30, 2019

A week in security (September 23 – 29)

Last week on Labs, we highlighted an Emotet campaign using Snowden’s new book as a lure, discussed how 15,000 webcams are vulnerable to attack, how insurance data security laws skirt political turmoil, and how the new iOS exploit checkm8 allows permanent compromise of iPhones. Other cybersecurity news Google said its quantum computer outperformed conventional models, but it will still be … [Read more...]

Filed Under: a week in security, ccleaner, checkm8, doordash, emotet, ihandy, insurance data, nodersok, webcams
September 23, 2019

Emotet malspam campaign uses Snowden’s new book as lure

Exactly one week ago, Emotet, one of the most dangerous threats to organizations in the last year, resumed its malicious spam campaigns after several months of inactivity. Based on our telemetry, we can see that the botnet started becoming chatty with its command and control servers (C2), about a week or so before the spam came through. Figure 1: Communications with Emotet C2s over 90 … [Read more...]

Filed Under: botnet, botnets, Edward Snowden, emotet, macros, malspam, permanent record, snowden, spam, whistleblowers, Word exploits
September 23, 2019

A week in security (September 16 -22)

Last week on Labs, we sounded the alarm about the relaunch of Emotet, one of the year’s most dangerous forms of malware, with a new spam campaign. We also reported on how international students in UK are targeted by visa scammers, what CEOs think about a potential US data privacy law, and introduced Malwarebytes Browser Guard. Finally, we looked at the role of data destruction in … [Read more...]

Filed Under: a week in security, amazon, Browser guard, data destruction, education cybersecurity, emotet, Google, Google Chrome, Instagram, phishing, privacy law, S3buckets, visa, visa scam, youtube
September 23, 2019

A week in security (September 16 -22)

Last week on Labs, we sounded the alarm about the relaunch of Emotet, one of the year’s most dangerous forms of malware, with a new spam campaign. We also reported on how international students in UK are targeted by visa scammers, what CEOs think about a potential US data privacy law, and introduced Malwarebytes Browser Guard. Finally, we looked at the role of data destruction in … [Read more...]

Filed Under: a week in security, amazon, Browser guard, data destruction, education cybersecurity, emotet, Google, Google Chrome, Instagram, phishing, privacy law, S3buckets, visa, visa scam, youtube
Next Page »