Compromising vital infrastructure: problems in education security continue

While educational organizations lack funding they are high on the target lists of cybercriminals. Does one fact lead to another?

Categories:

Tags:

(Read more…)

The post Compromising vital infrastructure: problems in education security continue appeared first on Malwarebytes Labs.

A week in security (July 8 – 14)

A roundup of cybersecurity news from July 8–14, including secure data sending, federal data privacy law, the Soft Cell attack, and more.

Categories:

Tags:

(Read more…)

The post A week in security (July 8 – 14) appeared first on Malwarebytes Labs.

Cellular networks under fire from Soft Cell attacks

We break down the recently revealed attacks on telco operators around the globe, targeting specific high-value individuals.

Categories:

Tags:

(Read more…)

The post Cellular networks under fire from Soft Cell attacks appeared first on Malwarebytes Labs.

New Mac cryptominer Malwarebytes detects as Bird Miner runs by emulating Linux

A new Mac cryptominer we call Bird Miner was found on pirated music production software that interestingly runs via Linux. Learn how this unique malware attempts, and ultimately fails, at stealth techniques.

Categories:

Tags:

(Read more…)

The post New Mac cryptominer Malwarebytes detects as Bird Miner runs by emulating Linux appeared first on Malwarebytes Labs.

Skimmer acts as payment service provider via rogue iframe

Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form.

Categories:

Tags:

(Read more…)

The post Skimmer acts as payment service provider via rogue iframe appeared first on Malwarebytes Labs.

Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses

CrySIS, aka Dharma, is a ransomware family making waves over the last two months, often being used in targeted attacks through RDP access. What other tricks are up its sleeve?

Categories:

Tags:

(Read more…)

The post Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses appeared first on Malwarebytes Labs.

Labs Cybercrime Tactics and Techniques report finds businesses hit with 235 percent more threats in Q1

The Labs team discovered that businesses are being targeted with 235 percent more threats than the previous year. Download the report and find out which threats are revving up, and which are dying out.

Categories:

Tags:

(Read more…)

The post Labs Cybercrime Tactics and Techniques report finds businesses hit with 235 percent more threats in Q1 appeared first on Malwarebytes Labs.

“Funky malware format” found in Ocean Lotus sample

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Categories:

Tags:

(Read more…)

The post “Funky malware format” found in Ocean Lotus sample appeared first on Malwarebytes Labs.