EternalBlue | Orthology.eu

Jovi Umawing September 3, 2019

TrickBot adds new trick to its arsenal: tampering with trusted texts

Researchers from Dell Secureworks saw a new feature in TrickBot that allows it to tamper with the web sessions of users who have certain mobile carriers. According to a blog post that they published early last week, TrickBot can do this by “intercepting network traffic before it is rendered by a victim’s browser.” If you may recall, TrickBot, a well-known banking Trojan we detect as … [Read more...]

Filed Under: 2fa, account takeover fraud, ATO, Authy, C&C, Dell Secureworks, dynamic webinject, dyreza, emotet, Eternal Romance, EternalBlue, EternalChampion, Gold Blackburn, Google Authenticator, hasherezade, point-of-sale, port-out fraud, POS, SIM hijacking, SIM swapping, Sprint, T-Mobile, thetrick, trickbot, trickloader, trickster, Trojan.TrickBot, Trojans, two-factor authentication, Verizon Wireless

Jovi Umawing April 30, 2019

Sophisticated threats plague ailing healthcare industry

The healthcare industry is no longer circling the drain, but it’s still in critical condition. While many organizations in healthcare have aimed at or made positive strides toward a more robust cybersecurity and privacy posture, they still have a long way to go. In 2018, healthcare had the highest number of breaches recorded compared to other industries. This is according to … [Read more...]

Filed Under: 2019 data security incident response report, cybercrime, decatur county general hospital breach, EternalBlue, filess malware, healthcare, healthcare cybersecurity, healthcare malware, healthcare security, HIPAA, Malware, Ransom.WannaCrypt, ransomware, riskware, riskware.mictray, riskware.tool.hck, rootkit.fileless.mtgen, spyware, spyware.agent, spyware.emotet, spyware.trickbot, trickbot, trojan.bitcoinminer, trojan.emotet, trojan.fakems, Trojan.TrickBot, Trojans, WannaCry, worm.parite, worm.qakbot, worms

Pieter Arntz March 14, 2019

Emotet revisited: pervasive threat still a danger to businesses

One of the most common and pervasive threats for businesses today is Emotet, a banking Trojan turned downloader that has been on our list of top 10 detections for many months in a row. Emotet, which Malwarebytes detects as Trojan.Emotet, has been leveled at consumers and organizations across the globe, fooling users into infecting endpoints through phishing emails, and then spreading laterally … [Read more...]

Filed Under: banking Trojan, botnet, cybercrime, emotet, EternalBlue, information stealer, Malware, Ryuk ransomware, SMB vulnerabilities, trickbot, trojan

Pieter Arntz December 14, 2018

How threat actors are using SMB vulnerabilities

Some of the most devastating ransomware and Trojan malware variants depend on vulnerabilities in the Windows Server Message Block (SMB) to propagate through an organization’s network. Windows SMB is a protocol used by PCs for file and printer sharing, as well as for access to remote services. A patch was released by Microsoft for SMB vulnerabilities in March 2017, but many organizations and home … [Read more...]

Filed Under: EternalBlue, EternalChampion, EternalRomance, Exploits, Malwarebytes news, NSA tools, Ransom.WannaCrypt, ShadowBrokers, SMB vulnerabilities, vulnerabilities, WannaCry, WannaCrypt

Malwarebytes Labs December 5, 2018

New ‘Under the Radar’ report examines modern threats and future technologies

As if you haven’t heard it enough from us, the threat landscape is changing. It’s always changing, and usually not for the better. The new malware we see being developed and deployed in the wild have features and techniques that allow them to go beyond what they were originally able to do, either for the purpose of additional infection or evasion of detection. To that end, we decided … [Read more...]

Filed Under: apac, artificial intelligence, behavioral detection, blocking at delivery, emea, emotet, EternalBlue, Exploits, fileless, fileless malware, future of cybercrime, malicious spam, Malwarebytes, Malwarebytes news, powershell, report, samsam, sorebrect, texas, trickbot, under the radar, web blocking, web protection, worm

Malwarebytes Labs November 27, 2018

Malwarebytes’ 2019 security predictions

Every year, we at Malwarebytes Labs like to stare into our crystal ball and foretell the future of malware. Okay, maybe we don’t have a crystal ball, but we do have years and years of experience in observing trends and sensing shifts in patterns. When it comes to security, though, we can only know so much. For example, we guarantee there’ll be some kind of development that we had zero … [Read more...]

Filed Under: AI, botnets, byos, cybercrime, EternalBlue, IoT, Malware, soundloggers

Adam Kujawa September 22, 2018

Emotet on the rise with heavy spam campaign

The threat landscape is changing once again, now that the ocean of cryptocurrency miners has shrunk to a small lake. Over the last couple months, we’ve seen cybercriminals lean back on tried and true methods of financial theft and extortion, with the rise of a familiar Banking Trojan: Emotet. However, over the last few days, we’ve noticed a large increase in malicious spam spreading … [Read more...]

Filed Under: campaign, cybercrime, emotet, EternalBlue, malicious documents, malicious spam, Malware, threat statistics, trickbot, WannaCry

TrickBot adds new trick to its arsenal: tampering with trusted texts

Sophisticated threats plague ailing healthcare industry

Emotet revisited: pervasive threat still a danger to businesses

How threat actors are using SMB vulnerabilities

New ‘Under the Radar’ report examines modern threats and future technologies

Malwarebytes’ 2019 security predictions

Emotet on the rise with heavy spam campaign

SEARCH

RECENT POSTS

Archives

DISCLAIMER