dcsimg
March 23, 2020

A week in security (March 16 – 22)

Last week on Malwarebytes Labs, we concluded our series on child identity theft. We also looked into threat actors and campaigns that ride the COVID-19 train, namely the criminal group APT36 and threat actors purporting to be the World Health Organization (WHO) but instead spreading malware. Lastly, we have tips for those who are working at home to stay secure while social distancing. Other … [Read more...]

Filed Under: a week in security, APT36, awis, covid-19, emotet, fake news, money mule, MonitorMinor, phishing scam, romance scam, shadow IoT, Slack, stalkerware, trickbot, Week in security, weekly blog roundup, WHO, World Health Organization
February 18, 2020

A week in security (February 10 – 16)

Last week on Malwarebytes Labs, we explained how to battle online coronavirus scams with facts, discussed the persistent re-infection techniques of Android/Trojan.xHelper and how to remove it, provided cyber tips for safe online dating, and showed how Hollywood teaches us misleading cybersecurity lessons. We also released the 2020 State of Malware Report describing the threat landscape of the … [Read more...]

Filed Under: a week in security, accusoft, CISO, coronavirus, Dell, emotet, Equifax, gigabyte, gridworks, helix, Hollywood, nude photos, online dating, robbinhood, state of malware report, xHelper
February 11, 2020

Malwarebytes Labs releases 2020 State of Malware Report

Malwarebytes Labs today released the results of our annual study on the state of malware—the 2020 State of Malware Report—and as usual, it’s a doozy. From an increase in enterprise-focused threats to the diversification of sophisticated hacking and stealth techniques, the 2019 threat landscape was shaped by a cybercrime industry that aimed to show it’s all grown up and coming after … [Read more...]

Filed Under: 2020 state of malware report, adware, Android, android malware, Data privacy, emotet, hacktools, iOS, Mac, macOS, ransomware, Reports, ryuk, Sodinokibi, State of Malware, state of malware report, trickbot, Trojans, Web threats, Windows
February 10, 2020

Battling online coronavirus scams with facts

Panic and confusion about the recent coronavirus outbreak spurred threat actors to launch several malware campaigns across the world, relying on a tried-and-true method to infect people’s machines: fear. Cybercriminals targeted users in Japan with an Emotet campaign that included malicious Word documents that allegedly contained information about coronavirus prevention. Malware embedded into … [Read more...]

Filed Under: 2019-nCoV, CDC, Centers for Disease Control and Prevention, china, coronavirus, email scam, emotet, Hubei, Malware, Novel Coronavirus, phishing campaign, phishing scam, quarantine, Social engineering, US CDC, WHO, World Health Organization, Wuhan
January 24, 2020

Tampa Bay Times hit with Ryuk ransomware attack

Florida newspaper The Tampa Bay Times suffered a Ryuk ransomware attack Thursday, making it the latest major victim of the notorious ransomware family that continues to rise in popularity. Curiously, the paper is at least the third Florida-based Ryuk victim in the past year. The attack, which The Tampa Bay Times reported on itself, did not result in any breached data. Sensitive customer … [Read more...]

Filed Under: Chicago Tribune, CrowdStrike, DCH Health System, emotet, Imperial County, Imperial County California, Lake City, Lake City Florida, Los Angeles Times, ProPublica, ransom, Ransom.Ryuk, ransomware, ryuk, Ryuk ransomware, Tampa Bay Times, tribune publishing, trickbot, Trojan.TrickBot, US Coast Guard
January 20, 2020

A week in security (January 13 – 19)

Last week on Malwarebytes Labs, we taught you how to prevent a rootkit attack, explained what data enrichment means, informed you about new rules on deepfakes in the US, and demonstrated how backdoors in elastic servers expose private data. Other cybersecurity news An online group of cybersecurity analysts calling themselves Intrusion Truth have revealed information about their fourth … [Read more...]

Filed Under: a week in security, apt40, Cisco, Citrix, data enrichment, deepfakes, elastic servers, emotet, rootkit, travelex, weleakinfo
January 15, 2020

Frankfurt’s IT networks grinds to a halt amid Emotet attack

The week before Christmas, Frankfurt saw the unwelcome return of Emotet, a banking trojan that recently came out of hiding to terrorise organisations across the globe.  The malware spread through the city’s systems, forcing officials to shut down its IT network, causing huge delays to government services.  This is the fourth time in recent weeks that Emotet has struck in Germany, following attacks … [Read more...]

Filed Under: breach, Breaches and Hacks, data breach, data breach notification, emotet, Malware
December 19, 2019

A decade in cybersecurity fails: the top breaches, threats, and ‘whoopsies’ of the 2010s

This post was co-authored by Wendy Zamora and Chris Boyd. All opinions expressed belong to your mom. Back in the days before climate change stretched frigid winter months directly into the insta-sweat of summer, there was a saying about March: in like a lamb, out like a lion. The same might be said about the last decade in cybersecurity fails. What kicked off with a handful of stories about … [Read more...]

Filed Under: ashley madison, ashley madison hack, Awareness, BadRabbit, cambridge analytica, cryptolocker, cryptolocker ransomware, Data privacy, Edward Snowden, emotet, Exploits, facebook, hacktivism, mat honan, NotPetya, NSA, nsa spying, nsa surveillance, NSA tools, playstation breach, playstation hack, ransomware, ryuk, Ryuk ransomware, security fails, shadow brokers, social media, sony, sony pictures hack, surveillance, target breach, target hack, trickbot, triple threat, WannaCry
December 13, 2019

Threat spotlight: The curious case of Ryuk ransomware

Ryuk. A name once unique to a fictional character in a popular Japanese comic book and cartoon series is now a name that appears in several rosters of the nastiest ransomware to ever grace the wild web. For an incredibly young strain—only 15 months old—Ryuk ransomware gaining such notoriety is quite a feat to achieve. Unless the threat actors behind its campaigns call it quits, too—Remember … [Read more...]

Filed Under: AES, average ransom amount, BitPaymer, BitPaymer ransomware, CryptoTech, Death Note, emotet, Far Eastern International Bank, FEIB, Gabriela Nicolao, gandcrab, Hermes, Hermes 2.1, Luciano Martins, pseudo-ransomware, Ransom.Ryuk, rdp, remote desktop protocol, RSA, Russian threat actors, ryuk, Ryuk ransomware, Shinigami’s revenge: the long tail of the Ryuk ransomware, threat spotlight, tribune publishing, trickbot, Wake-on-LAN, Wizard Spider, WoL
November 13, 2019

Labs report finds cyberthreats against healthcare increasing while security circles the drain

The team at Malwarebytes Labs is at it again, this time with a special edition of our quarterly CTNT report—Cybercrime tactics and techniques: the 2019 state of healthcare. Over the last year, we gathered global data from our product telemetry, honeypots, threat intelligence, and research efforts, focusing on the top threat categories and families that plagued the medical industry, as well as the … [Read more...]

Filed Under: APIs, biotech, EHR, electronic health record, emotet, health apps, Health Insurance Portability and Accessibility, health records, healthcare, healthcare cybersecurity, healthcare security, HIPAA, medical device, medical device threat, medical management apps, phishing, Reports, trickbot, trojan malware
Next Page »