www.secnews.physaphae.fr This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-12T09:29:26+00:00 www.secnews.physaphae.fr Malwarebytes Labs - MalwarebytesLabs Point-of-sale malware used to steal 167,000 credit cards Categories: NewsTags: POS Tags: malware Tags: credit card Tags: credit identity theft Tags: C2 Tags: MajikPOS Tags: Treasure Hunter Researchers have discovered the theft of 167,000 sets of credit card detials by MajikPOS and Treasure Hunter POS malware (Read more...) ]]> 2022-10-26T22:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/point-of-sale-malware-used-stole-the-details-of-over-167000-credit-cards www.secnews.physaphae.fr/article.php?IdArticle=7693493 False Malware None 2.0000000000000000 Malwarebytes Labs - MalwarebytesLabs Malformed signature trick can bypass Mark of the Web Categories: NewsTags: MOTW Tags: mark of the web Tags: signature Tags: malformed Tags: malware Tags: ransomware Tags: bypass Tags: SmartScreen We take a look at reports that malware authors are using what appears to be a years-old bug to bypass Mark of the Web alerts. (Read more...) ]]> 2022-10-26T14:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/malware-authors-use-malformed-signature-trick-to-bypass-mark-of-the-web www.secnews.physaphae.fr/article.php?IdArticle=7693495 False Malware None None Malwarebytes Labs - MalwarebytesLabs APT28 attack uses old PowerPoint trick to download malware Categories: NewsTags: APT28 Tags: Fancy Bear Tags: PowerPoint Tags: PowerShell Tags: One Drive Tags: SyncAppvPublishingServer The Russian APT known as Fancy Bear was caught using an old mouseover technique that doesn't need macros (Read more...) ]]> 2022-09-28T21:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/powerpoint-mouseover-triggers-powershell-script-for-malware-delivery www.secnews.physaphae.fr/article.php?IdArticle=7189077 False Malware APT 28 None Malwarebytes Labs - MalwarebytesLabs Erbium stealer on the hunt for data Categories: NewsTags: erbium Tags: malware Tags: data theft Tags: stealer Tags: wallets Tags: cryptocurrency Tags: browsers Tags: browser Tags: infection Tags: malware as a service We take a look at reports of new data theft malware relying on sold old tricks (Read more...) ]]> 2022-09-28T10:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/increasingly-popular-erbium-stealer-on-the-hunt-for-data www.secnews.physaphae.fr/article.php?IdArticle=7189079 False Malware None None Malwarebytes Labs - MalwarebytesLabs 2K games helpdesk abused to spread RedLine malware Categories: NewsTags: 2k games Tags: redline Tags: support Tags: The 2K games support helpdesk was abused to mail a link to download the RedLine infostealing malware to customers whose email address was in the system (Read more...) ]]> 2022-09-22T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/2k-games-helpdesk-abused-to-spread-redline-malware www.secnews.physaphae.fr/article.php?IdArticle=7070493 False Malware None None Malwarebytes Labs - MalwarebytesLabs Cyber threat hunting for SMBs: How MDR can help Categories: BusinessThreat hunting can weed out malware before anything bad like a data breach can happen, but cyber threat hunting is more difficult for SMBs to do than it is for large organizations due to resource constraints. That's where Managed Detection and Response (MDR) can help. (Read more...) ]]> 2022-09-15T10:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/09/cyber-threat-hunting-for-smbs-how-mdr-can-help www.secnews.physaphae.fr/article.php?IdArticle=6918132 False Data Breach,Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Evasive Shikitega Linux malware drops Monero cryptominer Categories: NewsCategories: ThreatsResearchers from the AT&T Alien Labs Resarch have discovered a stealthy new Linux malware. (Read more...) ]]> 2022-09-07T22:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/evasive-shikitega-linux-malware-drops-monero-cryptominer www.secnews.physaphae.fr/article.php?IdArticle=6811325 False Malware None None Malwarebytes Labs - MalwarebytesLabs Sextortionists used mobile malware to steal nude videos, contact lists from victims Categories: NewsTags: interpol Tags: sextortion Tags: mobile malware Tags: extortion In an international police action supported by Interpol, law enforcement agencies have uncovered and dismantled an international sextortion ring. (Read more...) ]]> 2022-09-07T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/sextortionists-used-mobile-malware-to-steal-nude-videos-contact-lists-from-victims www.secnews.physaphae.fr/article.php?IdArticle=6774965 False Malware None None Malwarebytes Labs - MalwarebytesLabs James Webb telescope images used to hide malware Categories: NewsCategories: ThreatsTags: Msdllupdate.exe Tags: macros Tags: James Webb Tags: certutil Tags: Golang Tags: base64 Tags: steganography Tags: OxB36F8GEEC634.jpg In a recent malware campaign, images from the James Webb telescope were used to hide malware. (Read more...) ]]> 2022-08-31T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/08/james-webb-telescope-images-used-to-hide-malware www.secnews.physaphae.fr/article.php?IdArticle=6654007 False Malware None None Malwarebytes Labs - MalwarebytesLabs JSSLoader: the shellcode edition Read more...) ]]> 2022-08-15T16:00:00+00:00 https://www.malwarebytes.com/blog/threat-intelligence/2022/08/jssloader-the-shellcode-edition www.secnews.physaphae.fr/article.php?IdArticle=6401574 False Malware None None Malwarebytes Labs - MalwarebytesLabs Introducing Malwarebytes Cloud Storage Scanning: How to scan for malware in cloud file storage repositories Categories: BusinessWe're excited to announce Malwarebytes Cloud Storage Scanning, a new service which extends Nebula malware scanning options to include files stored on cloud storage repositories that are part of your organization's digital ecosystem. (Read more...) ]]> 2022-08-15T14:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/08/introducing-malwarebytes-cloud-storage-scanning-how-to-scan-for-malware-in-cloud-file-storage-repositories www.secnews.physaphae.fr/article.php?IdArticle=6361299 False Malware None None Malwarebytes Labs - MalwarebytesLabs Woody RAT: A new feature-rich malware spotted in the wild The Malwarebytes Threat Intelligence team has discovered a new Remote Access Trojan that we dubbed Woody Rat used to target Russian entities. ]]> 2022-08-03T21:25:52+00:00 https://blog.malwarebytes.com/threat-intelligence/2022/08/woody-rat-a-new-feature-rich-malware-spotted-in-the-wild/ www.secnews.physaphae.fr/article.php?IdArticle=6113106 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Lightning Framework, modular Linux malware Researchers at Intezer have published an analysis of a modular and versatile malware targeting Linux systems called Lightning Framework ]]> 2022-07-25T12:26:37+00:00 https://blog.malwarebytes.com/reports/2022/07/lightning-framework-modular-linux-malware/ www.secnews.physaphae.fr/article.php?IdArticle=5939769 False Malware None None Malwarebytes Labs - MalwarebytesLabs New variant of Android SpyJoker malware removed from Play Store after 3 million+ installs 2022-07-14T15:03:32+00:00 https://blog.malwarebytes.com/android/2022/07/new-variant-of-android-spyjoker-malware-removed-from-play-store-after-3-million-installs/ www.secnews.physaphae.fr/article.php?IdArticle=5721568 False Malware None None Malwarebytes Labs - MalwarebytesLabs Cloud-based malware is on the rise. How can you secure your business? Cloud-based malware in on the rise. In this post, we'll cover four ways you can help secure your business against cloud-based malware. ]]> 2022-07-05T14:34:06+00:00 https://blog.malwarebytes.com/business-2/2022/07/cloud-based-malware-is-on-the-rise-how-can-you-secure-your-business/ www.secnews.physaphae.fr/article.php?IdArticle=5563739 False Malware None None Malwarebytes Labs - MalwarebytesLabs YTStealer targets YouTube content creators We take a look at reports of scammers targeting Youtuber's channels with malware called YTStealer, that eats authentication cookies. ]]> 2022-07-01T17:35:43+00:00 https://blog.malwarebytes.com/scams/2022/07/ytstealer-targets-youtube-content-creators/ www.secnews.physaphae.fr/article.php?IdArticle=5495957 False Malware Uber None Malwarebytes Labs - MalwarebytesLabs ZuoRAT is a sophisticated malware that mainly targets SOHO routers Researchers have analyzed a long running campaign that compromises SOHO routers to further penetrate and eavesdrop on networks. ]]> 2022-06-30T15:35:14+00:00 https://blog.malwarebytes.com/reports/2022/06/zuorat-is-a-sophisticated-malware-that-mainly-targets-soho-routers/ www.secnews.physaphae.fr/article.php?IdArticle=5472596 False Malware None None Malwarebytes Labs - MalwarebytesLabs Raccoon Stealer returns with a new bag of tricks 2022-06-30T13:33:23+00:00 https://blog.malwarebytes.com/cybercrime/2022/06/raccoon-stealer-returns-with-a-new-bag-of-tricks/ www.secnews.physaphae.fr/article.php?IdArticle=5471065 False Malware None None Malwarebytes Labs - MalwarebytesLabs Russia\'s APT28 uses fear of nuclear war to spread Follina docs in Ukraine 2022-06-21T15:25:09+00:00 https://blog.malwarebytes.com/threat-intelligence/2022/06/russias-apt28-uses-fear-of-nuclear-war-to-spread-follina-docs-in-ukraine/ www.secnews.physaphae.fr/article.php?IdArticle=5310140 False Malware APT 28 None Malwarebytes Labs - MalwarebytesLabs Stealthy Symbiote Linux malware is after financial institutions Symbiote, the latest malware to hit Linux users, is a parasite more than anything. Protect against this banking credential stealer now! ]]> 2022-06-15T15:48:24+00:00 https://blog.malwarebytes.com/reports/2022/06/stealthy-symbiote-linux-malware-is-after-financial-institutions/ www.secnews.physaphae.fr/article.php?IdArticle=5167413 False Malware None None Malwarebytes Labs - MalwarebytesLabs ASyncRat surpasses Dridex, TrickBot and Emotet to become dominant email threat 2022-06-09T14:18:13+00:00 https://blog.malwarebytes.com/threat-analysis/2022/06/asyncrat-surpasses-dridex-trickbot-and-emotet-to-become-dominant-email-threat/ www.secnews.physaphae.fr/article.php?IdArticle=5057991 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs BlackBasta is the latest ransomware to target ESXi virtual machines on Linux BlackBasta, a newish ransomware group that is somehow linked to Conti, has a new Linux variant of its malware that targets VMware ESXi virtual machines. ]]> 2022-06-09T13:50:41+00:00 https://blog.malwarebytes.com/ransomware/2022/06/blackbasta-is-the-latest-ransomware-to-target-esxi-virtual-machines-on-linux/ www.secnews.physaphae.fr/article.php?IdArticle=5057355 False Ransomware,Malware None None Malwarebytes Labs - MalwarebytesLabs 5 Linux malware families SMBs should protect themselves against In this post, we'll give you an overview of five Linux malware families your SMB should be protecting itself against - and how they work. ]]> 2022-06-08T13:43:32+00:00 https://blog.malwarebytes.com/business-2/2022/06/5-linux-malware-families-smbs-should-protect-themselves-against/ www.secnews.physaphae.fr/article.php?IdArticle=5040677 False Malware None 3.0000000000000000 Malwarebytes Labs - MalwarebytesLabs Massive increase in XorDDoS Linux malware in last six months Malware attacks against Linux systems are on the rise. And when it comes to bot malware, XorDDoS is the frontrunner. ]]> 2022-05-25T15:48:19+00:00 https://blog.malwarebytes.com/reports/2022/05/massive-increase-in-xorddos-linux-malware-in-last-six-months/ www.secnews.physaphae.fr/article.php?IdArticle=4804686 False Malware None None Malwarebytes Labs - MalwarebytesLabs How iPhones can run malware even when they\'re off 2022-05-19T15:16:00+00:00 https://blog.malwarebytes.com/malwarebytes-news/2022/05/how-iphones-can-run-malware-even-when-theyre-off/ www.secnews.physaphae.fr/article.php?IdArticle=4707749 False Malware None None Malwarebytes Labs - MalwarebytesLabs How COVID-19 fuelled a surge in malware Research from Malwarebytes reveals an enormous, coronavirus-fuelled surge in malware detections in 2021. ]]> 2022-05-16T12:28:53+00:00 https://blog.malwarebytes.com/reports/2022/05/how-covid-19-fuelled-a-surge-in-malware/ www.secnews.physaphae.fr/article.php?IdArticle=4656668 False Malware None None Malwarebytes Labs - MalwarebytesLabs “Chemical attack” email warnings deliver Jester Stealer malware 2022-05-10T12:04:27+00:00 https://blog.malwarebytes.com/web-threats/2022/05/chemical-attack-email-warnings-deliver-jester-stealer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=4594057 False Malware None None Malwarebytes Labs - MalwarebytesLabs VideoBytes: Offensive security tools and the bad guys that use them In this Videobyte, we're talking about what penetration testing tools malware gangs love to use and why they are better than what you can get on the black market. Categories: VideoBytes Tags: (Read more...) ]]> 2020-12-24T16:30:14+00:00 https://blog.malwarebytes.com/videobytes/2020/12/videobytes-offensive-security-tools/ www.secnews.physaphae.fr/article.php?IdArticle=2125086 False Malware None None Malwarebytes Labs - MalwarebytesLabs Lock and Code S1Ep20: Tracking the charities that track you online with Chris Boyd This week on Lock and Code, we talk to Chris Boyd, lead malware intelligence analyst for Malwarebytes, about charity organizations and online ad tracking. Categories: Podcast Tags: (Read more...) ]]> 2020-11-23T15:00:00+00:00 https://blog.malwarebytes.com/podcast/2020/11/lock-and-code-s1ep20-tracking-the-charities-that-track-you-online-with-chris-boyd/ www.secnews.physaphae.fr/article.php?IdArticle=2051175 False Malware,Guideline None None Malwarebytes Labs - MalwarebytesLabs Malsmoke operators abandon exploit kits in favor of social engineering scheme Threat actors behind malsmoke, one of the largest malvertising campaigns we've seen in recent months, have switched malware delivery tactics. Categories: ExploitsSocial engineeringThreat analysis Tags: (Read more...) ]]> 2020-11-16T18:00:06+00:00 https://blog.malwarebytes.com/threat-analysis/2020/11/malsmoke-operators-abandon-exploit-kits-in-favor-of-social-engineering-scheme/ www.secnews.physaphae.fr/article.php?IdArticle=2038526 False Malware None None Malwarebytes Labs - MalwarebytesLabs Fake COVID-19 survey hides ransomware in Canadian university attack Universities are a hot target for malware right now. In this latest attack, a threat actor was targeting the University of British Columbia with the goal of distributing ransomware. Categories: Cybercrime Social engineering Tags: (Read more...) ]]> 2020-10-28T15:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2020/10/fake-covid-19-survey-hides-ransomware-in-canadian-university-attack/ www.secnews.physaphae.fr/article.php?IdArticle=2000821 False Ransomware,Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs VideoBytes: Ransomware gets wasted! On today's VideoBytes, we look at how ransomware is on the rise, attacking corporations with malware that not only encrypts files, but also steals it. Categories: Ransomware Tags: (Read more...) ]]> 2020-10-02T17:00:00+00:00 https://blog.malwarebytes.com/ransomware/2020/10/videobytes-ransomware-gets-wasted/ www.secnews.physaphae.fr/article.php?IdArticle=1952351 False Ransomware,Malware None None Malwarebytes Labs - MalwarebytesLabs Sandbox in security: what is it, and how it relates to malware Sandboxes and virtual machines are tools that security researchers use to determine whether samples are malicious and what their payload is. Categories: Awareness Tags: (Read more...) ]]> 2020-09-24T17:00:00+00:00 https://blog.malwarebytes.com/awareness/2020/09/sandbox-in-security/ www.secnews.physaphae.fr/article.php?IdArticle=1937127 False Malware None None Malwarebytes Labs - MalwarebytesLabs Lock and Code S1Ep15: Safely using Google Chrome Extensions with Pieter Arntz This week on Lock and Code, we talk to Pieter Arntz, malware intelligence researcher for Malwarebytes, about Google Chrome extensions. Categories: Podcast Tags: (Read more...) ]]> 2020-09-14T14:49:08+00:00 https://blog.malwarebytes.com/podcast/2020/09/lock-and-code-s1ep15-safely-using-google-chrome-extensions-with-pieter-arntz/ www.secnews.physaphae.fr/article.php?IdArticle=1916438 False Malware,Conference APT 35 None Malwarebytes Labs - MalwarebytesLabs \'Just tell me how to fix my computer:\' a crash course on malware detection For the Luddites and the technologically challenged, this is your crash course on malware detection. Learn what it is, how it works, and why it's important. Categories: Awareness Tags: (Read more...) ]]> 2020-08-21T15:00:00+00:00 https://blog.malwarebytes.com/awareness/2020/08/just-tell-me-how-to-fix-my-computer-a-crash-course-on-malware-detection/ www.secnews.physaphae.fr/article.php?IdArticle=1874699 False Malware None None Malwarebytes Labs - MalwarebytesLabs SBA phishing scams: from malware to advanced social engineering SBA loan scams continue to make the rounds targeting small business owners, CEOS, and CFOs. Learn what to look out for. Categories: Scams Tags: (Read more...) ]]> 2020-08-10T16:30:05+00:00 https://blog.malwarebytes.com/scams/2020/08/sba-phishing-scams-from-malware-to-advanced-social-engineering/ www.secnews.physaphae.fr/article.php?IdArticle=1852201 False Malware None None Malwarebytes Labs - MalwarebytesLabs Chinese APT group targets India and Hong Kong using new variant of MgBot malware We uncovered an active campaign in early July that we attribute to a new Chinese APT group attacking India and Hong Kong with MgBot malware. Categories: Threat analysis Tags: (Read more...) ]]> 2020-07-21T15:00:00+00:00 https://blog.malwarebytes.com/threat-analysis/2020/07/chinese-apt-group-targets-india-and-hong-kong-using-new-variant-of-mgbot-malware/ www.secnews.physaphae.fr/article.php?IdArticle=1816894 False Malware None None Malwarebytes Labs - MalwarebytesLabs Lock and Code S1Ep11: Locating concerns of Bluetooth and beacon technology with Chris Boyd This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Chris Boyd, lead malware intelligence analyst for Malwarebytes, about Bluetooth and beacon technology. Last month, cybersecurity experts warned the public about the data collection embedded in the Donald Trump 2020... Categories: Podcast Tags: (Read more...) ]]> 2020-07-20T15:30:00+00:00 https://blog.malwarebytes.com/podcast/2020/07/lock-and-code-s1ep11-locating-concerns-of-bluetooth-and-beacon-technology-with-chris-boyd/ www.secnews.physaphae.fr/article.php?IdArticle=1815212 False Malware,Guideline None None Malwarebytes Labs - MalwarebytesLabs A week in security (July 6 – 12) A roundup of cybersecurity news from July 6 – 12, including a look at pre-installed malware on some Android phones, and a Mac malware mystery. Categories: A week in security Tags: (Read more...) ]]> 2020-07-13T15:30:09+00:00 https://blog.malwarebytes.com/a-week-in-security/2020/07/a-week-in-security-july-6-12/ www.secnews.physaphae.fr/article.php?IdArticle=1802238 False Malware None None Malwarebytes Labs - MalwarebytesLabs We found yet another phone with pre-installed malware via the Lifeline Assistance program We discovered yet another phone model with pre-installed malware provided from the Lifeline Assistance program via Assurance Wireless by Virgin Mobile. Categories: Android Tags: (Read more...) ]]> 2020-07-08T15:30:00+00:00 https://blog.malwarebytes.com/android/2020/07/we-found-yet-another-phone-with-pre-installed-malware-via-the-lifeline-assistance-program/ www.secnews.physaphae.fr/article.php?IdArticle=1797073 False Malware None None Malwarebytes Labs - MalwarebytesLabs Mac ThiefQuest malware may not be ransomware after all We discovered a new Mac malware, ThiefQuest, that appeared to be ransomware at first glance. However, once we dug in deeper, we found out its true identity-and intention. Categories: Mac Tags: (Read more...) ]]> 2020-07-07T17:20:00+00:00 https://blog.malwarebytes.com/mac/2020/07/mac-thiefquest-malware-may-not-be-ransomware-after-all/ www.secnews.physaphae.fr/article.php?IdArticle=1795364 False Ransomware,Malware None None Malwarebytes Labs - MalwarebytesLabs Coronavirus campaigns lead to surge in malware threats, Labs report finds Our latest, special edition for our quarterly CTNT report focuses on recent, increased malware threats which all have one, big thing in common-using coronavirus as a lure. Categories: Cybercrime Malware Reports Scams Social engineering Threat analysis Tags: (Read more...) ]]> 2020-06-01T15:00:00+00:00 https://blog.malwarebytes.com/reports/2020/06/coronavirus-campaigns-lead-to-surge-in-malware-threats-labs-report-finds/ www.secnews.physaphae.fr/article.php?IdArticle=1744692 False Malware,Guideline None None Malwarebytes Labs - MalwarebytesLabs Copycat criminals abuse Malwarebytes brand in malvertising campaign This fake, copycat Malwarebytes site was set up by cybercriminals to distribute malware in a malvertising campaign. We examine the campaign-and the criminals' motives. Categories: Exploits and vulnerabilities Tags: (Read more...) ]]> 2020-04-07T18:27:46+00:00 https://blog.malwarebytes.com/exploits-and-vulnerabilities/2020/04/copycat-criminals-abuse-malwarebytes-brand-in-malvertising-campaign/ www.secnews.physaphae.fr/article.php?IdArticle=1642851 False Malware None None Malwarebytes Labs - MalwarebytesLabs Coronavirus scams, found and explained Here are some of the many coronavirus email scams that Malwarebytes spotted in the wild, with full details on what they say, what they're lying about, and which malware they're trying to install on your machine. Categories: Scams Tags: Adware and PUPs can actually be far more invasive and dangerous on the Mac than "real" malware. We demonstrate with analysis of Crossrider, a sophisticated Mac adware that uses evasion and persistence techniques more complex than nation-state malware. Categories: Mac Tags: (Read more...) ]]> 2020-02-27T18:34:48+00:00 https://blog.malwarebytes.com/mac/2020/02/mac-adware-is-more-sophisticated-dangerous-than-traditional-mac-malware/ www.secnews.physaphae.fr/article.php?IdArticle=1569132 False Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (February 10 – 16) A roundup of the previous week's security news, including Malwarebytes' release of the 2020 State of Malware Report, online dating woes, Emotet infection vectors, ransomware attacks, and more. Categories: A week in security Tags: (Read more...) ]]> 2020-02-18T16:40:45+00:00 https://blog.malwarebytes.com/a-week-in-security/2020/02/a-week-in-security-february-10-16/ www.secnews.physaphae.fr/article.php?IdArticle=1549609 False Ransomware,Malware Equifax None Malwarebytes Labs - MalwarebytesLabs Malwarebytes Labs releases 2020 State of Malware Report The 2020 State of Malware Report reveals how cybercriminals upped the ante on businesses, Mac threats outpaced PCs, and ransomware continued its targeted, deadly assault with new families in 2019. Learn all this and more in the full report, linked in our blog. Categories: Reports Tags: (Read more...) ]]> 2020-02-11T08:01:00+00:00 https://blog.malwarebytes.com/reports/2020/02/malwarebytes-labs-releases-2020-state-of-malware-report/ www.secnews.physaphae.fr/article.php?IdArticle=1534977 False Ransomware,Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (January 6 – 12) A cybersecurity news roundup from January 6–12, with a look at Phobos ransomware and a discovery of pre-installed malware on government-funded phones. Categories: A week in security Tags: (Read more...) ]]> 2020-01-13T16:29:59+00:00 https://blog.malwarebytes.com/a-week-in-security/2020/01/a-week-in-security-january-6-12/ www.secnews.physaphae.fr/article.php?IdArticle=1501671 False Ransomware,Malware None None Malwarebytes Labs - MalwarebytesLabs United States government-funded phones come pre-installed with unremovable malware A US-funded government assistance program is selling budget-friendly mobile phones that come pre-installed with unremovable malicious apps. Malwarebytes Labs investigates the malware's origins. Categories: Android Tags: (Read more...) ]]> 2020-01-09T16:00:00+00:00 https://blog.malwarebytes.com/android/2020/01/united-states-government-funded-phones-come-pre-installed-with-unremovable-malware/ www.secnews.physaphae.fr/article.php?IdArticle=1500170 False Malware None None Malwarebytes Labs - MalwarebytesLabs Mac threat detections on the rise in 2019 For the first time ever, Mac threats broke into Malwarebytes' top five overall detections of 2019. Take a look at this and other telemetry that shows Mac malware is certainly on the rise. Categories: Mac Tags: (Read more...) ]]> 2019-12-16T18:40:06+00:00 https://blog.malwarebytes.com/mac/2019/12/mac-threat-detections-on-the-rise-in-2019/ www.secnews.physaphae.fr/article.php?IdArticle=1494091 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Threat spotlight: the curious case of Ryuk ransomware From comic book death god to ransomware baddie, Ryuk ransomware remains a mainstay when organizations find themselves in a crippling malware pinch. We look at Ryuk's origins, attack methods, and how to protect against this ever-present threat. Categories: Threat spotlight Tags: (Read more...) ]]> 2019-12-12T22:33:53+00:00 https://blog.malwarebytes.com/threat-spotlight/2019/12/threat-spotlight-the-curious-case-of-ryuk-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=1494095 False Ransomware,Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Stealthy new Android malware poses as ad blocker, serves up ads instead Since its discovery less than a month ago, a stealthy new Android malware has already been detected on over 500 devices, and it's on the rise. Learn how this clever threat pretends to be an ad blocker and then hides itself on mobile devices, all while serving up tons of ads. Categories: Android Tags: (Read more...) ]]> 2019-11-14T19:51:58+00:00 https://blog.malwarebytes.com/android/2019/11/stealthy-new-android-malware-poses-as-ad-blocker-serves-up-ads-instead/ www.secnews.physaphae.fr/article.php?IdArticle=1467892 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Vital infrastructure: emergency services We all depend on emergency services to come to the rescue in case of serious problems. How does malware hinder them? Categories: Vital infrastructure Tags: (Read more...) ]]> 2019-09-11T19:29:03+00:00 https://blog.malwarebytes.com/vital-infrastructure/2019/09/vital-infrastructure-emergency-services/ www.secnews.physaphae.fr/article.php?IdArticle=1320443 False Malware None None Malwarebytes Labs - MalwarebytesLabs Unprecedented new iPhone malware discovered Google announced late last night that hacked websites have been used to drop iPhone malware on unsuspecting users over a two-year period. Thomas Reed investigates. Categories: Mac Tags: (Read more...) ]]> 2019-08-30T17:40:02+00:00 https://blog.malwarebytes.com/mac/2019/08/unprecedented-new-iphone-malware-discovered/ www.secnews.physaphae.fr/article.php?IdArticle=1295945 False Malware None None Malwarebytes Labs - MalwarebytesLabs Everything you need to know about ATM attacks and fraud: part 2 In part two of this two-part series on ATM attacks and fraud, we outline the final two ATM attack types-logical and social engineering-and provide info on how they are conducted, the different malware families used in these attacks, and how to protect against them. Categories: 101 Tags: (Read more...) ]]> 2019-08-02T15:00:00+00:00 https://blog.malwarebytes.com/101/2019/08/atm-attacks-and-fraud-part-2/ www.secnews.physaphae.fr/article.php?IdArticle=1239075 False Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (July 1 – 7) A roundup of cybersecurity news from July 1-7, including stalkerware, Bitcoin generators, app permissions, Chinese spyware, some giant leaks, and a new malware attack method. Categories: A week in security Tags: (Read more...) ]]> 2019-07-08T15:08:03+00:00 https://blog.malwarebytes.com/a-week-in-security/2019/07/a-week-in-security-july-1-7/ www.secnews.physaphae.fr/article.php?IdArticle=1193695 False Malware Equifax None Malwarebytes Labs - MalwarebytesLabs A week in security (June 24 – 30) A roundup of cybersecurity news from June 24–30, including top malicious web campaigns, updates on the GreenFlash Sundown exploit, a Malwarebytes initiative to double down on stalkerware detection and awareness, and more. Categories: A week in security Tags: (Read more...) ]]> 2019-07-01T17:02:05+00:00 https://blog.malwarebytes.com/a-week-in-security/2019/07/a-week-in-security-june-24-30/ www.secnews.physaphae.fr/article.php?IdArticle=1181794 False Malware None None Malwarebytes Labs - MalwarebytesLabs Fake jquery campaign leads to malvertising and ad fraud schemes We look for answers in a long-running and yet mysterious malware campaign that has compromised thousands of websites to date. Categories: Threat analysis Tags: (Read more...) ]]> 2019-06-27T16:14:03+00:00 https://blog.malwarebytes.com/threat-analysis/2019/06/fake-jquery-campaign-leads-to-malvertising-and-ad-fraud-schemes/ www.secnews.physaphae.fr/article.php?IdArticle=1176737 False Malware,Guideline None None Malwarebytes Labs - MalwarebytesLabs New Mac cryptominer Malwarebytes detects as Bird Miner runs by emulating Linux A new Mac cryptominer we call Bird Miner was found on pirated music production software that interestingly runs via Linux. Learn how this unique malware attempts, and ultimately fails, at stealth techniques. Categories: Mac Tags: (Read more...) ]]> 2019-06-20T15:33:03+00:00 https://blog.malwarebytes.com/mac/2019/06/new-mac-cryptominer-malwarebytes-detects-as-bird-miner-runs-by-emulating-linux/ www.secnews.physaphae.fr/article.php?IdArticle=1165641 False Malware None None Malwarebytes Labs - MalwarebytesLabs MegaCortex continues trend of targeted ransomware attacks In this threat spotlight, we feature MegaCortex, another custom ransomware designed for targeted attacks on enterprises. Will this Matrix-inspired malware strike again? Categories: Threat spotlight Tags: (Read more...) ]]> 2019-06-12T16:03:02+00:00 https://blog.malwarebytes.com/threat-spotlight/2019/06/megacortex-continues-trend-of-targeted-ransomware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=1151280 False Ransomware,Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Everything you need to know about ATM attacks and fraud: Part 1 If you're familiar with skimming, you may have also heard of shimming, card trapping, and cash trapping. These are attacks and scams targeted at ATMs. Part 1 of our series explores various ATM attack scenarios and explains what users should look out for when using an ATM. Categories: 101 How-tos Tags: (Read more...) ]]> 2019-05-29T15:00:00+00:00 https://blog.malwarebytes.com/101/2019/05/everything-you-need-to-know-about-atm-attacks-and-fraud-part-1/ www.secnews.physaphae.fr/article.php?IdArticle=1134183 False Malware None None Malwarebytes Labs - MalwarebytesLabs Vital infrastructure: Threats target financial institutions, fintech, and cryptocurrencies Losing trust in financial institutions can have a disrupting effect on society. And malware authors love to target these direct sources of money. How can we protect them? Categories: Business Security world Tags: (Read more...) ]]> 2019-05-10T15:00:00+00:00 https://blog.malwarebytes.com/security-world/2019/05/vital-infrastructure-financial-institutions/ www.secnews.physaphae.fr/article.php?IdArticle=1102370 False Malware None None Malwarebytes Labs - MalwarebytesLabs Sophisticated threats plague ailing healthcare industry Black hat hackers are after patient healthcare data, and such breaches will only intensify. Which forms of malware are behind the attacks? We take a look at the advanced threats targeting a sector struggling to keep up. Categories: Cybercrime Malware Tags: (Read more...) ]]> 2019-04-30T15:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2019/04/sophisticated-threats-plague-ailing-healthcare-industry/ www.secnews.physaphae.fr/article.php?IdArticle=1097476 False Malware Wannacry None Malwarebytes Labs - MalwarebytesLabs Electrum DDoS botnet reaches 152,000 infected hosts We've identified a new piece of malware that is connected to the Electrum botnet. Categories: Cybercrime Tags: (Read more...) ]]> 2019-04-29T17:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2019/04/electrum-ddos-botnet-reaches-152000-infected-hosts/ www.secnews.physaphae.fr/article.php?IdArticle=1097015 False Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (April 15 – 21) A roundup of security news from April 15–21, including an explanation of like-farming, Ellen DeGeneres scam, flaws in VPN services, funky malware formats found in Ocean Lotus, and more. Categories: Security world Week in security Tags: (Read more...) ]]> 2019-04-22T15:47:02+00:00 https://blog.malwarebytes.com/security-world/2019/04/a-week-in-security-april-15-21/ www.secnews.physaphae.fr/article.php?IdArticle=1095519 True Malware APT 32 None Malwarebytes Labs - MalwarebytesLabs Funky malware format found in Ocean Lotus sample Recently, one of our researchers presented at the SAS conference on "Funky malware formats"-atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam. Categories: Malware Threat analysis Tags: (Read more...) ]]> 2019-04-19T18:37:05+00:00 https://blog.malwarebytes.com/threat-analysis/2019/04/funky-malware-format-found-in-ocean-lotus-sample/ www.secnews.physaphae.fr/article.php?IdArticle=1095040 False Malware,Threat APT 32 None Malwarebytes Labs - MalwarebytesLabs Malware targeting industrial plants: a threat to physical security When malware shuts down the computer systems of an industrial plant, it could threaten the physical security of those working in or living near it. Here's how to protect your workforce and your business from targeted threats. Categories: 101 Business Tags: (Read more...) ]]> 2019-04-17T16:04:02+00:00 https://blog.malwarebytes.com/101/business/2019/04/when-malware-becomes-a-threat-to-physical-security/ www.secnews.physaphae.fr/article.php?IdArticle=1094227 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Emotet revisited: pervasive threat still a danger to businesses Emotet is often mentioned as one of the most annoying, effective, and costly present-day malware infections. We discuss the reasons why and the proper way to remove it. Categories: Cybercrime Malware Tags: (Read more...) ]]> 2019-03-14T15:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2019/03/emotet-revisited-this-pervasive-persistent-threat-is-still-a-danger-to-businesses/ www.secnews.physaphae.fr/article.php?IdArticle=1069587 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs New Golang brute forcer discovered amid rise in e-commerce attacks E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force. Categories: Threat analysis Tags: (Read more...) ]]> 2019-02-26T16:00:00+00:00 https://blog.malwarebytes.com/threat-analysis/2019/02/new-golang-brute-forcer-discovered-amid-rise-e-commerce-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=1043107 False Malware,Hack None None Malwarebytes Labs - MalwarebytesLabs Compromising vital infrastructure: communication In the series about vital infrastructure we look at communication. How vital is it? How is malware a threat and even how does malware show us the way to secure communication? Categories: Business Security world Tags: (Read more...) ]]> 2019-02-08T19:09:03+00:00 https://blog.malwarebytes.com/security-world/2019/02/compromising-vital-infrastructure-communication/ www.secnews.physaphae.fr/article.php?IdArticle=1020150 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs A week in security (January 28 – February 3) A roundup of security news from January 28 – February 3, including disputes between Facebook and Apple, dubious malware hosting, privacy threats to mobile users, and more. Categories: Security world Week in security Tags: (Read more...) ]]> 2019-02-04T17:00:04+00:00 https://blog.malwarebytes.com/security-world/2019/02/a-week-in-security-january-28-february-3/ www.secnews.physaphae.fr/article.php?IdArticle=1020156 False Malware None None Malwarebytes Labs - MalwarebytesLabs Analyzing a new stealer written in Golang We captured a new information-stealing malware written in Golang (Go). Read up on our analysis of its functionality, as well as the tools researchers can use to unpack malware written in this relatively new programming language. Categories: Malware Threat analysis Tags: (Read more...) ]]> 2019-01-30T17:00:00+00:00 https://blog.malwarebytes.com/threat-analysis/2019/01/analyzing-new-stealer-written-golang/ www.secnews.physaphae.fr/article.php?IdArticle=1015383 False Malware None None Malwarebytes Labs - MalwarebytesLabs Interview with a malware hunter: Jérôme Segura In our series called "Interview with a malware hunter," we turn to Jerome Segura, Head of Threat Intelligence at Malwarebytes. In this Q&A session, we'll take you behind the scenes to get to know one of our malware intelligence crew. Categories: 101 FYI Tags: (Read more...) ]]> 2019-01-29T16:00:00+00:00 https://blog.malwarebytes.com/101/2019/01/interview-malware-hunter-jerome-segura/ www.secnews.physaphae.fr/article.php?IdArticle=1013877 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs A week in security (January 21 – 27) A roundup of last week's security news from January 21 to 27, including Modlishka, Crytekk, PUPs, and the State of Malware report. Categories: Security world Week in security Tags: (Read more...) ]]> 2019-01-28T18:00:01+00:00 https://blog.malwarebytes.com/security-world/2019/01/week-security-january-21-27/ www.secnews.physaphae.fr/article.php?IdArticle=1012437 False Malware None None Malwarebytes Labs - MalwarebytesLabs 2019 State of Malware report: Trojans and cryptominers dominate threat landscape The 2019 State of Malware report is here. Learn what Malwarebytes Labs researchers discovered about the top global threats for businesses and consumers in 2018, and predictions for 2019. Categories: CTNT report Malwarebytes news Tags: (Read more...) ]]> 2019-01-23T08:01:03+00:00 https://blog.malwarebytes.com/malwarebytes-news/ctnt-report/2019/01/2019-state-malware-report-trojans-cryptominers-dominate-threat-landscape/ www.secnews.physaphae.fr/article.php?IdArticle=1005098 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs The new landscape of pre-installed mobile malware: malicious code within We are now seeing malware authors target system apps that are required for mobile devices to function properly. By injecting malicious code within these necessary apps, threat actors have reshaped the landscape of pre-installed malware for the worse. Categories: Cybercrime Mobile Tags: (Read more...) ]]> 2019-01-02T18:15:04+00:00 https://blog.malwarebytes.com/cybercrime/2019/01/the-new-landscape-of-preinstalled-mobile-malware-malicious-code-within/ www.secnews.physaphae.fr/article.php?IdArticle=973885 False Malware,Threat None None Malwarebytes Labs - MalwarebytesLabs Flurry of new Mac malware drops in December Multiple new pieces of Mac malware have appeared in December, all distributed through different means, but all opening backdoors on infected computers. Categories: Mac Threat analysis Tags: (Read more...) ]]> 2018-12-11T16:00:00+00:00 https://blog.malwarebytes.com/threat-analysis/2018/12/flurry-new-mac-malware-drops-december/ www.secnews.physaphae.fr/article.php?IdArticle=943066 False Malware None None Malwarebytes Labs - MalwarebytesLabs Mac malware combines EmPyre backdoor and XMRig miner New Mac malware is using the EmPyre backdoor and the XMRig cryptominer to drain processor power-and possibly worse. Categories: Mac Threat analysis Tags: (Read more...) ]]> 2018-12-07T16:57:03+00:00 https://blog.malwarebytes.com/threat-analysis/2018/12/mac-malware-combines-empyre-backdoor-and-xmrig-miner/ www.secnews.physaphae.fr/article.php?IdArticle=939916 False Malware None None Malwarebytes Labs - MalwarebytesLabs Mac malware intercepts encrypted web traffic for ad injection New Mac malware has been found that intercepts encrypted traffic for the purpose of injecting ads into web pages. But could this adware be used for more devious purposes in the future? Categories: Mac Threat analysis Tags: (Read more...) ]]> 2018-10-24T15:00:04+00:00 https://blog.malwarebytes.com/threat-analysis/2018/10/mac-malware-intercepts-encrypted-web-traffic-for-ad-injection/ www.secnews.physaphae.fr/article.php?IdArticle=860552 False Malware None None Malwarebytes Labs - MalwarebytesLabs Fileless malware: part deux In part two of this series on fileless malware, our malware analyst walks readers through two demonstrations of fileless malware attacks and shows the problems with detecting them using static signatures. Categories: Malwarebytes news Tags: (Read more...) ]]> 2018-10-05T15:00:00+00:00 https://blog.malwarebytes.com/malwarebytes-news/2018/10/fileless-malware-part-deux/ www.secnews.physaphae.fr/article.php?IdArticle=831996 False Malware None None Malwarebytes Labs - MalwarebytesLabs Fortnite gamers targeted by data theft malware If you've ever been tempted to cheat at Fortnite, think again-with the release of season six of the popular video game, we found a data theft malware masquerading as a cheat tool, ready to steal your browser sessions, cookies, and even your Bitcoin. Categories: Cybercrime Malware Tags: (Read more...) ]]> 2018-10-02T14:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2018/10/fortnite-gamers-targeted-by-data-theft-malware/ www.secnews.physaphae.fr/article.php?IdArticle=828488 False Malware None 4.0000000000000000 Malwarebytes Labs - MalwarebytesLabs When spyware goes mainstream Considering using spyware to surveil a cheating partner or keep an eye on the kiddos? Think again. Not only is it an invasion of privacy, but it's illegal. Learn the telltale signs of spyware and why this suddenly mainstream malware needs to go back underground. Categories: 101 Cybercrime FYI Malware Tags: (Read more...) ]]> 2018-09-05T15:00:00+00:00 https://blog.malwarebytes.com/cybercrime/2018/09/when-spyware-goes-mainstream/ www.secnews.physaphae.fr/article.php?IdArticle=793843 False Malware None None Malwarebytes Labs - MalwarebytesLabs Reversing malware in a custom format: Hidden Bee elements When we recently analyzed payloads related to Hidden Bee (dropped by the Underminer EK), we noticed something unusual. After reversing the malware, we discovered that its authors actually created their own executable format. Follow our step-by-step analysis for a closer look. Categories: Malware Threat analysis Tags: () ]]> 2018-08-30T15:41:03+00:00 https://blog.malwarebytes.com/threat-analysis/2018/08/reversing-malware-in-a-custom-format-hidden-bee-elements/ www.secnews.physaphae.fr/article.php?IdArticle=786124 False Malware None None Malwarebytes Labs - MalwarebytesLabs Fileless malware: getting the lowdown on this insidious threat In this series of articles, we provide an in-depth discussion of fileless malware and their related attacks. In part one, we cover a brief overview of the problems with and general features of fileless malware, laying the groundwork for technical analysis of various samples employing fileless and semi-fileless methods. Categories: Malware Threat analysis Tags: (Read more...) ]]> 2018-08-29T16:48:03+00:00 https://blog.malwarebytes.com/threat-analysis/2018/08/fileless-malware-getting-the-lowdown-on-this-insidious-threat/ www.secnews.physaphae.fr/article.php?IdArticle=784848 False Malware,Threat None 4.0000000000000000 Malwarebytes Labs - MalwarebytesLabs Osiris dropper found using process doppelgänging Process doppleganging, a rare technique of impersonating a process, was discovered last year, but hasn't been seen much in the wild since. It was an interesting surprise, then, to discover its use in a dropper of the Osiris banking Trojan. We unpack the code to show how malware authors used this process. Categories: Malwarebytes news Tags: (Read more...) ]]> 2018-08-09T18:52:05+00:00 https://blog.malwarebytes.com/malwarebytes-news/2018/08/osiris-using-process-doppelganging/ www.secnews.physaphae.fr/article.php?IdArticle=773788 False Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (July 23 – July 29) A round up of the security news from July 23 – July 29, including the introduction of Malwarebytes Browser Extensions, and new malware HiddenBee, Proton, and MobiDash. Categories: Security world Week in security Tags: (Read more...) ]]> 2018-07-30T15:57:01+00:00 https://blog.malwarebytes.com/security-world/2018/07/a-week-in-security-july-23-july-29/ www.secnews.physaphae.fr/article.php?IdArticle=759097 False Malware None None Malwarebytes Labs - MalwarebytesLabs New strain of Mac malware Proton found after two years A new variant of the Mac malware Proton, which was rampant on macOS last year, has been found dating back to at least two years ago. Learn how this could still affect your Mac today. Categories: Mac Threat analysis Tags: (Read more...) ]]> 2018-07-24T15:00:00+00:00 https://blog.malwarebytes.com/threat-analysis/2018/07/new-strain-of-mac-malware-found-after-two-years/ www.secnews.physaphae.fr/article.php?IdArticle=751351 False Malware None None Malwarebytes Labs - MalwarebytesLabs A week in security (July 2 – July 8) A roundup of the security news from July 2 - July 8, including a macro-less infection tecnique, online project management tools and crypto-mining malware campaigns. Categories: Security world Week in security Tags: (Read more...) ]]> 2018-07-09T17:00:00+00:00 https://blog.malwarebytes.com/security-world/week-in-security/2018/07/week-security-july-2-july-8/ www.secnews.physaphae.fr/article.php?IdArticle=737496 False Malware None None Malwarebytes Labs - MalwarebytesLabs New macro-less technique to distribute malware The latest macro-less technique to distribute malware via Office documents does not involve exploits. Just a little bit of social engineering. Categories: Threat analysis Tags: (Read more...) ]]> 2018-07-02T21:12:04+00:00 https://blog.malwarebytes.com/threat-analysis/2018/07/new-macro-less-technique-used-distribute-malware/ www.secnews.physaphae.fr/article.php?IdArticle=731057 False Malware None None Malwarebytes Labs - MalwarebytesLabs Mac malware targets cryptomining users A new Mac malware called OSX.Dummy is being distributed on cryptomining chat groups that, even after being removed, leaves behind remnants for future malware to find. Categories: Malwarebytes news Tags: (Read more...) ]]> 2018-07-02T18:36:01+00:00 https://blog.malwarebytes.com/malwarebytes-news/2018/07/mac-malware-targets-cryptomining-users/ www.secnews.physaphae.fr/article.php?IdArticle=731058 False Malware None None Malwarebytes Labs - MalwarebytesLabs World Cup 2018: malware attacks gunning for goal The World Cup is in full swing, and attackers are busy both on and off the pitch. Which of the competing nations are under fire from malware authors? Who is sailing through qualifying rounds mostly untouched? What are the most popular threats in the midst of the biggest footballing nations? Read on to find out. Categories: Cybercrime Malware Tags: (Read more...) ]]> 2018-06-27T18:29:04+00:00 https://blog.malwarebytes.com/cybercrime/2018/06/world-cup-2018-malware-attacks-gunning-for-goal/ www.secnews.physaphae.fr/article.php?IdArticle=725833 False Malware None None