Malwarebytes Labs

Malwarebytes Labs

QuantLoader is a Trojan downloader that has been used in campaigns serving a range of malware, including ransomware, Banking Trojans, and RATs. In this post, we'll take a high-level look at the campaign flow, as well as a deep dive into how the malware executes. Categories: Malware Threat analysis Tags: ... Read More

A roundup of notable security news from March 19 to 25, including data theft, ransomware, phone addiction, and more. Categories: Security world Week in security Tags: bug bountymalwarephishingransomwareroundupStephen Hawking scamweek in security (Read more...) The post A week in security (March 19 – March 25) appeared first on Malwarebytes Labs ... Read More

Apple adds a new page to their website, aiming to address the growing trend of smartphone addiction in children and its harmful effects on users. Categories: FYI Tags: Appleparental controlssecurity 101smartphone addictionteen security (Read more...) The post Investors concerned about smartphone addiction; Apple responds with new webpage appeared first on ... Read More

A roundup of notable security news from March 12 to 18, including data theft, mobile malware, compromised clients, and more. Categories: Security world Week in security Tags: AndroidcybercrimemalwareMeltdownSpectrevpn (Read more...) The post A week in security (March 12 – March 18) appeared first on Malwarebytes Labs ... Read More

An uncommon exploit kit adds a fresh Flash Player exploit to distribute the Hermes ransomware in South Korea. Categories: Exploits Threat analysis Tags: CVE-2018-4878EKexploit kitFashHermesransomware (Read more...) The post Hermes ransomware distributed to South Koreans via recent Flash zero-day appeared first on Malwarebytes Labs ... Read More

Evading detection when distributing payloads is a key part of an effective malware campaign. Hancitor shows that it has yet another trick up its sleeve for that. Categories: Malware Threat analysis Tags: filelessHancitormacromalwarepayloads (Read more...) The post Hancitor: fileless attack with a kernel trick appeared first on Malwarebytes Labs ... Read More

A roundup of notable security news from March 5 to 11, including another takedown of GeekHelp tech support scammers, a lame Android app, AI and ML in cybersecurity, Mac malware, and more. Categories: Security world Week in security Tags: Androidartificial intelligenceencryptioninternational women's daymachine learningrecapweekly blog roundupwomen in tech (Read more...) ... Read More

Almost two years after exposing a group of tech support scammers, we stumbled upon them again, this time under the moniker GeeksHelp. Categories: Social engineering Threat analysis Tags: AmericaGeeksGeeksFranceGeeksHelptech support scammers (Read more...) The post Tech support scammers GeeksHelp caught again, two years later appeared first on Malwarebytes Labs ... Read More

Last week in infosec, cryptomining kept chugging along, exploits were spotted in the wild, and a massive DDoS attack targeted GitHub. Categories: Security world Week in security Tags: filelessgerman governmentmalicious cryptominingtorrentweekly blog roundup (Read more...) The post Week in security (February 26 – March 4) appeared first on Malwarebytes Labs ... Read More

A roundup of notable news stories from February 19–25, including drive-by download attacks on Chinese websites, Deepfakes programs being paired with cryptominers, and a review of GDPR guidelines. Categories: Security world Week in security Tags: avzhanddosdeepfakesfraudgdprimpersonationKrebsOnSecurityrecapsecuityweekly blog roundup (Read more...) The post A week in security (February 19 – February ... Read More