dcsimg
January 6, 2021

Adobe Flash Player reaches end-of-life

“What now? My farm is no longer working. Can you have a look, honey?” Like millions of other people my wife likes to play online browser games. You know, the ones that don’t require a fast connection because your virtual life is not in constant danger, and an occasional harvest is enough to make progress in the game. So, when her browser refused to open her virtual farm, and there were many, … [Read more...]

Filed Under: Adobe Flash Player, Awareness, browser games, exploit kits, flash, Mac, Windows
December 6, 2018

New Flash Player zero-day used against Russian facility

For the past couple of years, Office documents have largely replaced exploit kits as the primary malware delivery vector, giving threat actors the choice between social engineering lures and exploits or a combination of both. While today’s malicious spam (malspam) heavily relies on macros and popular vulnerabilities (i.e. CVE-2017-11882), attackers can also resort to zero-days when trying to … [Read more...]

Filed Under: 0day, adobe flash, exploit, flash, Flash ActiveX, Flash Player, Flash Player zero-day, Malwarebytes news, Office, russia, russian, ukraine, zero day
June 1, 2018

Blocks for Flash and others coming to Office 365

If you’re a user of Microsoft Office products such as Word and Excel, you’re probably aware that they’ve been used as inroads for malware for a long, long time. But what about malware attacks without Macros? Sure. Macro malware for Macs? That, too. Malicious documents and spying tools? Danger, Will Robinson. We have some good news and some bad news. The good news is that monthly … [Read more...]

Filed Under: 365, controls, cybercrime, Exploits, flash, macros, Microsoft, Office, shockwave, silverlight
April 10, 2018

‘FakeUpdates’ campaign leverages multiple website platforms

A malware campaign which seems to have started at least since December 2017 has been gaining steam by enrolling a growing number of legitimate but compromised websites. Its modus operandi relies on social engineering users with fake but convincing update notifications. Similar techniques were used by a group leveraging malvertising on high traffic websites such as Yahoo to distribute ad fraud … [Read more...]

Filed Under: chrome, Chtonic, fake updates, FakeUpdates, firefox, flash, Joomla, malvertising, Malware, rat, Social engineering, Squarespace, Threat analysis, wordpress
January 15, 2018

Cookies: Should I worry about them?

Starting off the new year, many of us are worried about cookies—how many we ate over the holidays and how we’re going to avoid them in the break room, for example. With so much cybercrime and data theft swirling around like daily bomb cyclones, there’s more than a few folks worried about the kinds of cookies they encounter on the Internet. But should they be? Cookies are typically text … [Read more...]

Filed Under: 101, browser, cache, cookies, evercookies, flash, privacy, silverlight, supercookies, video plug ins