No man’s land: How a Magecart group is running a web skimming operation from a war zone

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Categories:

Tags:

(Read more…)

The post No man’s land: How a Magecart group is running a web skimming operation from a war zone appeared first on Malwarebytes Labs.

Governments increasingly eye social media meltdown

It seems problems never quite go away for social media platforms, and more governments of the world are taking keen interest. Will the tech giants be able to sort things out before legislators steps into the fray?

Categories:

Tags:

(Read more…)

The post Governments increasingly eye social media meltdown appeared first on Malwarebytes Labs.

Skimmer acts as payment service provider via rogue iframe

Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form.

Categories:

Tags:

(Read more…)

The post Skimmer acts as payment service provider via rogue iframe appeared first on Malwarebytes Labs.

Microsoft pushes patch to prevent ‘WannaCry’ level vulnerability

This month marks two years since the infamous WannaCry attack. Now a Remote Desktop Protocol (RDP) vulnerability has been discovered that could be used in a similar large-scale attack—though Microsoft has released a patch. Have you updated yet?

Categories:

Tags:

(Read more…)

The post Microsoft pushes patch to prevent ‘WannaCry’ level vulnerability appeared first on Malwarebytes Labs.

WhatsApp fix goes live after targeted attack on human rights lawyer

A fix was rolled out for a WhatsApp vulnerability, which was used to inject spyware into mobile devices and target a human rights lawyer.

Categories:

Tags:

(Read more…)

The post WhatsApp fix goes live after targeted attack on human rights lawyer appeared first on Malwarebytes Labs.

Wall Street Market reported to have exit scammed

Users reported that Wall Street Market, a broadly-known cryptocurrency dark net market, has executed an exit scam, swindling millions from account holders in the process.

Categories:

Tags:

(Read more…)

The post Wall Street Market reported to have exit scammed appeared first on Malwarebytes Labs.

Labs Cybercrime Tactics and Techniques report finds businesses hit with 235 percent more threats in Q1

The Labs team discovered that businesses are being targeted with 235 percent more threats than the previous year. Download the report and find out which threats are revving up, and which are dying out.

Categories:

Tags:

(Read more…)

The post Labs Cybercrime Tactics and Techniques report finds businesses hit with 235 percent more threats in Q1 appeared first on Malwarebytes Labs.

A look inside the FBI’s 2018 IC3 online crime report

The FBI’s Internet Crime Complaint Center have released their 2018 report about online crime. Which attacks are most popular? Where are the victims located? And how much money has been lost in the process?

Categories:

Tags:

(Read more…)

The post A look inside the FBI’s 2018 IC3 online crime report appeared first on Malwarebytes Labs.

Hackers snab emails and more in Microsoft Outlook, Hotmail, and MSN compromise

Hackers made use of a compromised Microsoft support agent’s credentials to sneak a peek at its users’ Hotmail, MSN, and Outlook emails. How bad is it, and what has Microsoft done to correct it?

Categories:

Tags:

(Read more…)

The post Hackers snab emails and more in Microsoft Outlook, Hotmail, and MSN compromise appeared first on Malwarebytes Labs.