dcsimg
March 25, 2021

Perkiler malware turns to SMB brute force to spread

Researchers at Guardicore have identified a new infection vector being used by the Perkiler malware where internet-facing Windows machines are breached through SMB password brute force. Perkiler is a complex Windows malware with rootkit components that is dropped by the Purple Fox exploit kit (EK) and was spread by phishing campaigns. What is SMB? Server Message Block (SMB), aka Common … [Read more...]

Filed Under: brute force, exploit kit, perkiler, Purple Fox, rdp, rootkit, SMB, trojan.perkiler, Trojans
September 4, 2020

SMB cybersecurity posture weakened by COVID-19, Labs report finds

In August, Malwarebytes Labs analyzed the damage caused by COVID-19 to business cybersecurity. Because of immediate, mandated transitions to working from home (WFH), businesses across the United States suffered more data breaches, lost more dollars, and increased their overall attack surfaces, all while experiencing a worrying lack of cybersecurity awareness on behalf of workers and IT and … [Read more...]

Filed Under: business security, covid-19, cybersecurity, cybersecurity awareness, enduring from home, IT, IT admins, lock and code, lock and code podcast, pandemic, Reports, small and medium sized businesses, small businesses, SMB, SMBs, WFH, working from home
May 4, 2020

A week in security (April 27 – May 3)

Last week on Malwarebytes Labs, we looked at how secure the cloud is, understood why unexpected demand can influence an organization to consider their “just in time” (JIT) system, speculated on why the threat actors behind the Troldesh ransomware suddenly released thousands of decryption keys, preached the good news about VPN being mainstream, touched on the relationship between cybercrime and a … [Read more...]

Filed Under: Apple, APT, awis, bluetooth, bluetooth attack, Bluetooth vulnerabilities, CivicSmart, Cloud Security, coronavirus, covid-19, hacked, hospitals, JIT, just in time, Malwarebytes news, oceanlotus, pandemic survival book, PhantomLance, phishing scam, ransomware, recap, scada, SMB, Troldesh ransomware, vpn, weekly blog roundup, zoom, zoom phishing
February 24, 2020

Why managed service providers (MSP) are critical for business continuity

With the threat landscape becoming more hostile to businesses, small- and medium-sized businesses (SMBs) are often finding it difficult to cope. Hence, they turn to managed service providers (MSPs) for help, not only to keep their businesses going—the concept known as business continuity—but also to offer salve to known pain points that encompass all industries. Short-staffed One of the … [Read more...]

Filed Under: Compliance, managed service providers, MSP, msps, Opinion, ransomware, SMB, zero unemployment rate
January 10, 2020

Threat spotlight: Phobos ransomware lives up to its name

Ransomware has struck dead on organizations since it became a mainstream tool in cybercriminals’ belts years ago. From massive WannaCry outbreaks in 2017 to industry-focused attacks by Ryuk in 2019, ransomware’s got its hooks in global businesses and shows no signs of stopping. That includes a malware family known as Phobos ransomware, named after the Greek god of fear. Phobos is … [Read more...]

Filed Under: brute force, coveware, crysis, crysis ransomware, dharma, Dharma ransomware, disorganised crime, mfa, Multi-Factor Authorization, Phobos, Phobos NextGen, Phobos NotDharma, Phobos ransomware, raas, ransomware, Ransomware as a Service, rdp, remote desktop protocol, Server Message Block, SMB, Sodinokibi, threat spotlight, virtual private networks, vpn
November 4, 2019

A week in security (October 28 – November 3)

Last week on Malwarebytes Labs, we celebrated the birth of the Internet 50 years ago, highlighted reports about the US Federal Trade Commission (FTC) filing a case against stalkerware developer Retina-X, issued a PSI on disaster donation scams, looked at the top cybersecurity challenged SMBs face, and provided guidance to journalists on how they can defend themselves against threat … [Read more...]

Filed Under: a week in security, Adobe Creative Cloud, advanced persistent threats, American Cancer Society, Android, APT, blogger, cybersecurity challenges, data breach, disaster donation scam, emoji app, esports, Fancy Bear, fraud, FTC, Gafgyt, internet, journalists, MaaS, Magecart, Malware-as-a-Service, MessageTap, Nuclear Power Corp of India, Raccoon, Retina-X, sextortion, SMB, stalkerware, US Federal Trade Commission, wordpress
October 31, 2019

SMBs lack resources to defend against cyberattacks, plus pay more in the aftermath

Cyberattacks, many have noted, are the fastest growing economic crime not only in the United States, but also around the world. This upward trend has been observed since 2014, according to PricewaterhouseCoopers (PwC), and won’t likely be slowing down anytime soon. Cyberattacks—much like the advancement of technology, the interweaving of digital lives among familiars and strangers via social … [Read more...]

Filed Under: Business, cyberattacks, Malware, medium businesses, PricewaterhouseCoopers, ransomware, small businesses, SMB, social networks
May 3, 2018

Internet Shortcut used in Necurs malspam campaign

The Necurs botnet continues to be one of the most prolific malicious spam distributors, with regular waves of carefully-crafted attachments that are used to download malware. The majority of malspam campaigns that we track are targeting Microsoft Office with documents containing either macros or exploits. We also see a number of other types of malicious attachments that are zipped scripts (.VBS, … [Read more...]

Filed Under: botnet, Criminals, malspam, necurs, samba, SMB, spam, Threat analysis
January 29, 2015

Explored: Using Multiple Hyper-V Virtual Switches

In our article on common Hyper-V deployment mistakes, one item we discussed was the creation of too many Hyper-V virtual switches. This article will expand on that thought and cover various Hyper-V virtual switch deployment scenarios. One Switch will Usually […] Read the post here: Explored: Using Multiple Hyper-V Virtual Switches … [Read more...]

Filed Under: hyper-v, iSCSI, Networking, SMB, Storage, teaming, virtual adapter, virtual switch, Windows Server
March 18, 2014

Storage and Hyper-V Part 7: Actual Performance

This series has meandered down a long and winding path from basic concepts to theory to practice. In this final installment, I’m going to show a lot of really boring graphs and charts to answer the big question: What about […] Read the post here: Storage and Hyper-V Part 7: Actual Performance … [Read more...]

Filed Under: hyper-v, iSCSI, SMB, Storage, storage spaces