dcsimg
September 3, 2019

A week in security (August 26 – September 1)

Last week on Malwarebytes Labs, we analysed the Android xHelper trojan, we wondered why the Nextdoor app would send out letters on behalf of their customers, reported about a study that explores the clickjacking problem across top Alexa-ranked websites, wondered how to get the board to invest in higher education cybersecurity, and shared our view on the discovery of unprecedented new iPhone … [Read more...]

Filed Under: a week in security, asruex, blockchain, clickjacking, coinmining, emotet, iPhone, nextdoor, retadup, trickbot, vpn, xHelper
September 3, 2019
August 23, 2019

Ransomware continues assault against cities and businesses

Ransomware continues to make waves in the US, forcing multiple cities and organizations into tough choices. Pressed for cash and time, local government organizations are left with few options: Either pay the ransom as soon as possible and encourage criminals to continue bringing essential services to their knees, or refuse and be left with a massive cleanup bill. When a $50,000 ransom becomes … [Read more...]

Filed Under: attack, Backup, critical infrastructure, emotet, Florida, local government organisation, locked out, louisiana, ransom, ransomware, robinhood, ryuk, Ryuk ransomware, SamSam ransomware, texas, trickbot
August 14, 2019

Trojans, ransomware dominate 2018–2019 education threat landscape

Heading into the new school year, we know educational institutions have a lot to worry about. Teacher assignments. Syllabus development. Gathering supplies. Readying classrooms. But one issue should be worrying school administrators and boards of education more than most: securing their networks against cybercrime. In the 2018–2019 school year, education was the top target for … [Read more...]

Filed Under: cyberthreats, education cybersecurity, emotet, ransomware, ryuk, Ryuk ransomware, trickbot, Trojans
May 10, 2019

Vital infrastructure: Threats target financial institutions, fintech, and cryptocurrencies

With news of a malware attack on accounting firm Wolters Kluwer causing a “quiet panic” in the accounting world this week, our assertion that financial institutions—from banks to brokers—are part of the vital infrastructure of society has been solidified. According to its website, Wolters Kluwer provides software and services to all of the top 100 accounting firms in the United … [Read more...]

Filed Under: APTs, banking apps, banking Trojans, banks, bitcoin, Business, cryptocurrencies, cryptocurrency, cryptowallets, emotet, exploit kits, financial institutions, financials, fintech, information stealers, infrastructure, Malware, Security world, vital
April 29, 2019

A week in security (April 22 – 28)

Last week on Labs, we looked at security threats to headphones, privacy options in the world of law, and wandered through the FBI’s 2018 IC3 online crime report. We also explored another MageCart attack, and we released our 2019 Q1 Crime Tactics and Techniques report. Other cybersecurity news Fooling automated surveillance cameras: Bypassing neural network frameworks with colourful abstract … [Read more...]

Filed Under: Apple, cryptominer, emotet, Malware, phishing, Security world, Week in security
April 25, 2019

Labs Cybercrime Tactics and Techniques report finds businesses hit with 235 percent more threats in Q1

The Malwarebytes Labs Cybercrime Tactics and Techniques Q1 2019 report found businesses at the butt end of a bad joke. In just one year, threats aimed at corporate targets have increased by 235 percent, with Trojans, such as Emotet, and ransomware in particular revving up in the first quarter. Included in the report is analysis of sharp declines in consumer cryptomining and other threats, … [Read more...]

Filed Under: adware, business threats, cryptomining, cybercrime, emotet, Malware, ransomware, threats, Trojans, Troldesh, Troldesh ransomware
April 1, 2019

Compromising vital infrastructure: water management

It’s probably unnecessary to explain why water management is considered part of our vital infrastructure, but it’s a wider field than you might expect—and almost every one of its components can be integral to our survival. We all need clean water to drink. As much as I like my coffee, I can’t make it with contaminated liquids. And the farmers that grow our coffee need water to irrigate … [Read more...]

Filed Under: awwa, Business, BYOD, city of atlanta, crashoverride, emotet, insider threats, ransomware, scada, Security world, stuxnet, vital infrastructure, water management, water plants
March 18, 2019

A week in security (March 11 – 17)

Last week on Malwarebytes Labs, we looked at the Lazarus group in our series about APT groups, we discussed the introduction of Payment Service Directive 2 (PSD2) in the EU, we tackled Google’s Nest fiasco, and the launch of Mozilla’s Firefox Send. In addition, we gave you an overview of the pervasive threat, Emotet, and we discussed reputation management in the age of cyberattacks against … [Read more...]

Filed Under: Apex Legends, Chinese DNA, emotet, facebook, Facebook outage, Firefox Send, Google Nest, Google Play, Lazarus Group, netflix, psd2, Security world, Spotify, Week in security
March 14, 2019

Emotet revisited: pervasive threat still a danger to businesses

One of the most common and pervasive threats for businesses today is Emotet, a banking Trojan turned downloader that has been on our list of top 10 detections for many months in a row. Emotet, which Malwarebytes detects as Trojan.Emotet, has been leveled at consumers and organizations across the globe, fooling users into infecting endpoints through phishing emails, and then spreading laterally … [Read more...]

Filed Under: banking Trojan, botnet, cybercrime, emotet, EternalBlue, information stealer, Malware, Ryuk ransomware, SMB vulnerabilities, trickbot, trojan
Next Page »