dcsimg
March 31, 2020

Important tips for safe online shopping post COVID-19

As more and more countries order their citizens inside in response to COVID-19, online shopping—already a widespread practice—has surged in popularity, especially for practical items like hand sanitizer, groceries, and cleaning products. When people don’t feel safe outside, it’s only natural they’d prefer to shop as much as possible from the safety of their own homes. Unfortunately, you can … [Read more...]

Filed Under: Awareness, counterfeit, online shopping, padlock, vpn, web skimmers
March 19, 2020

Security tips for working from home (WFH)

Over the last decade, remote work and working from home has grown in popularity for many professionals. In fact, a 2018 study found more than 70 percent of global employees work remotely at least once per week. However, the coronavirus pandemic and resulting lockdown in many parts of the world have forced a large number of employees into unfamiliar territory—not just remote work, but full-time … [Read more...]

Filed Under: coronavirus, How-tos, password, remote, remote work, remote workers, remotesec, security, vpn, VPNs, WFH, work from home, working, working from home, working remote
March 6, 2020

Bring your own privacy: VPNs for consumers and orgs

VPNs (virtual private networks) have been popular for quite some time now, and they’re worth a huge amount of money for the companies working in this area. They’re also at the forefront of combating potential repression and censorship around the world. It might all sound a bit esoteric and unrelated to your general day-to-day requirements, but VPNs are absolutely a mainstream topic whether at home … [Read more...]

Filed Under: anonymity, anonymous, desktop, ip address, Mobile, privacy, private browsing, proxy, remote work, remote workers, secure, virtual private networks, vpn, VPNs
January 10, 2020

Threat spotlight: Phobos ransomware lives up to its name

Ransomware has struck dead on organizations since it became a mainstream tool in cybercriminals’ belts years ago. From massive WannaCry outbreaks in 2017 to industry-focused attacks by Ryuk in 2019, ransomware’s got its hooks in global businesses and shows no signs of stopping. That includes a malware family known as Phobos ransomware, named after the Greek god of fear. Phobos is … [Read more...]

Filed Under: brute force, coveware, crysis, crysis ransomware, dharma, Dharma ransomware, disorganised crime, mfa, Multi-Factor Authorization, Phobos, Phobos NextGen, Phobos NotDharma, Phobos ransomware, raas, ransomware, Ransomware as a Service, rdp, remote desktop protocol, Server Message Block, SMB, Sodinokibi, threat spotlight, virtual private networks, vpn
October 25, 2019

How to protect yourself from doxing

“Abandon hope all ye who enter.” This ominous inscription affixed atop the gates to Hell in Dante’s Divine Comedy applies peculiarly well to describe the state of the Internet today. It’s hard to draw a parallel to the utility that the Internet has offered to modern civilization—perhaps no other technological innovation has brought about greater change. Yet, one of its many consequences is … [Read more...]

Filed Under: dox, doxer, doxing, How-tos, ip address, mobile VPNs, online privacy, password manager, personal data, personally identifiable information, privacy, Social engineering, social media, vpn, VPNs, WHOIS
October 21, 2019

A week in security (October 14 – 20)

Last week on Malwarebytes Labs, we tried to unlock the future of the password (its vulnerabilities, current alternatives, and possible future disappearance), analyzed the lagging response by many businesses in adopting a patch for Pulse VPN vulnerability, looked at Instagram’s bulked-up security against phishing emails scams, and were reminded that ransomware remains a dominant threat facing … [Read more...]

Filed Under: a week in security, amazon, dark web, domestic abuse, domestic abuse survivor, domestic abuse survivors, domestic violence, facebook, facial recognition, Instagram, jackpot, jackpotting, kindle, Mark Zuckerberg, national cybersecurity awareness month, National domestic violence awareness month, Oracle, password, passwords, phish, phishing, phishing scam, ransomware, tor, Tor browser, US Customs and Border Enforcement, vpn, vulnerabilities, vulnerability
October 18, 2019

Pulse VPN patched their vulnerability, but businesses are trailing behind

In April 2019, Pulse Secure published an advisory about a vulnerability in their software. In August, cybercriminals were massively scanning for systems that were running a vulnerable version. Now it’s October, and still many organizations have not applied the patches that are available for this vulnerability. This is a trend we’ve seen repeated with dozens of other publicly-known … [Read more...]

Filed Under: Business, cybercriminals, exploit, exploit kits, Exploits, patch, patching, pulse, vpn, vulnerabilities, vulnerability
September 10, 2019

300 shades of gray: a look into free mobile VPN apps

The times, they are a changin’. When users once felt free to browse the Internet anonymously, post about their innermost lives on social media, and download apps with frivolity, folks are playing things a little closer to the vest these days. Nowadays, users are paying more attention to privacy and how their personal information is transmitted, processed, stored, and shared. Nearly every … [Read more...]

Filed Under: Android, anonymity, Apple App Store, black mirror, CDT, centennials, Commonwealth Scientific and Industrial Research Organization, CSIRO, dark web, DNS hijacking, DNS leak, emerging markets, encryption, fake av, free, free VPN, Global Web Index, GlobalWebIndex, Google Play Store, Guideline 5.4, Hotspot Shield, Hotspot Shield complaint, Innet VPN, iOS, IPv6 leak, KilpVip, Luminati, malvertising, millenials, mobile VPN apps, motivations for VPN usage, MyMobileSecure, netflix, onion browser, privacy, Queen Mary University of London, risk-free, Rob Mardisalu, rogueware, Sapienza University of Rome, Secnet VPN, Simon Migliano, TheBestVPN, top 20 VPN apps, Top10VPN, transparency, UC Berkeley, University of South Wales, virtual private networks, vpn
September 4, 2019

5 simple steps to securing your remote employees

As remote working has become standard practice, employees are working from anywhere and using any device they can to get the job done. That means repeated connections to unsecured public Wi-Fi networks—at a coffee shop or juice bar, for example—and higher risks for data leaks from lost, misplaced, or stolen devices. Think about it. Let’s say your remote employee uses his personal smart … [Read more...]

Filed Under: 2fa, approved device list, bring your own device, Business, BYOD, encryption, Find my iPhone, Find my Mobile, governance, IDG Connect, jailbreak, man-in-the-middle, man-in-the-middle attack, multi-factor authentication, passcode, password, public wi-fi, RBAC, remote, remote employees, remote wiping, remote workforce, role-based access control, single sign-on, sso, two-factor authentication, vpn
September 3, 2019

A week in security (August 26 – September 1)

Last week on Malwarebytes Labs, we analysed the Android xHelper trojan, we wondered why the Nextdoor app would send out letters on behalf of their customers, reported about a study that explores the clickjacking problem across top Alexa-ranked websites, wondered how to get the board to invest in higher education cybersecurity, and shared our view on the discovery of unprecedented new iPhone … [Read more...]

Filed Under: a week in security, asruex, blockchain, clickjacking, coinmining, emotet, iPhone, nextdoor, retadup, trickbot, vpn, xHelper
Next Page »