Stealthy new Android malware poses as ad blocker, serves up ads instead

Since its discovery less than a month ago, a stealthy new Android malware has already been detected on over 500 devices, and it’s on the rise. Learn how this clever threat pretends to be an ad blocker and then hides itself on mobile devices, all while serving up tons of ads.

Categories:

Tags:

(Read more…)

The post Stealthy new Android malware poses as ad blocker, serves up ads instead appeared first on Malwarebytes Labs.

Meet Extenbro, a new DNS-changer Trojan protecting adware

We found a new Trojan that uses aggressive techniques, including blocking access to security sites, to deliver an adware bundler. Read up on what Extenbro can do and how to get this pest off your system.

Categories:

Tags:

(Read more…)

The post Meet Extenbro, a new DNS-changer Trojan protecting adware appeared first on Malwarebytes Labs.

Adware and PUPs families add push notifications as an attack vector

Push notifications are being added to the arsenal of PUPs, adware, and even a Trojan browser extension that spams Facebook groups.

Categories:

Tags:

(Read more…)

The post Adware and PUPs families add push notifications as an attack vector appeared first on Malwarebytes Labs.

Emotet revisited: pervasive threat still a danger to businesses

Emotet is often mentioned as one of the most annoying, effective, and costly present-day malware infections. We discuss the reasons why and the proper way to remove it.

Categories:

Tags:

(Read more…)

The post Emotet revisited: pervasive threat still a danger to businesses appeared first on Malwarebytes Labs.

A week in security (September 10 – 16)

A roundup of the security news from September 10–16, including omnichannel fraud, ways to get back at scammers, the security of 2FA, and partnerstrokas.

Categories:

Tags:

(Read more…)

The post A week in security (September 10 – 16) appeared first on Malwarebytes Labs.

Process Doppelgänging meets Process Hollowing in Osiris dropper

Process doppleganging, a rare technique of impersonating a process, was discovered last year, but hasn’t been seen much in the wild since. It was an interesting surprise, then, to discover its use mixed in with Process Hollowing, yet another technique, in a dropper for the Osiris banking Trojan.

Categories:

Tags:

(Read more…)

The post Process Doppelgänging meets Process Hollowing in Osiris dropper appeared first on Malwarebytes Labs.

Fake Fortnite for Android links found on YouTube

The extremely popular video game Fortnite is coming to Android sometime this summer, and the fanbase is going wild. Not surprisingly, mobile malware developers are taking advantage. Already, there are several videos on YouTube with links claiming to be versions of Fortnite for Android. Spoiler alert: they’re fake.

Categories:

Tags:

(Read more…)

The post Fake Fortnite for Android links found on YouTube appeared first on Malwarebytes Labs.

An in-depth malware analysis of QuantLoader

QuantLoader is a Trojan downloader that has been used in campaigns serving a range of malware, including ransomware, Banking Trojans, and RATs. In this post, we’ll take a high-level look at the campaign flow, as well as a deep dive into how the malware executes.

Categories:

Tags:

(Read more…)

The post An in-depth malware analysis of QuantLoader appeared first on Malwarebytes Labs.

Bogus hack apps hack users back for cryptocash

Recently, we discovered a gold mine of fake hack apps that mine for Monero cryptocurrency and serve up annoying adware.

Categories:

Tags:

(Read more…)

The post Bogus hack apps hack users back for cryptocash appeared first on Malwarebytes Labs.