Labs Notes Monthly Recap – May/2020

In 2020, we doubled up our research efforts to report on many new attacks and hacks that we see in the wild. We believe that being informed is a big part of ...

Mukashi malware: What it is, how it works and how to prevent it | Malware spotlight

| | Malware Analysis
Introduction Learning from the past can be an important part of future success in any endeavor, including cyberattacks. Attack groups observe this concept and apply it when they create new attack... Go ...
Newspaper Icon with News Title - Red Arrow on a Grey Background. Mass Media Concept.

Bitglass Security Spotlight: Wishbone App Breached, Affecting More Than 40 Million Users

Here are the top stories of recent weeks: Over 40 Million Users Affected in Wishbone App Breach 25 Million College Students Are the Victims of Mathway Breach Airline Data Breach Results in ...

How to Find & Fix WordPress Pharma Hack

It’s hard for any website owner to discover pharmaceutical spam. Finding bogus content for prescription drugs on a website you watched grow from a tiny blog can be heartbreaking. But don’t blame ...
Ghosting Bots: The Story of Hoaxcalls Failures

Ghosting Bots: The Story of Hoaxcalls Failures

The Hoaxcalls campaign has provided a number of opportunities to explore the trials & errors in researching, developing, & building a botnet campaign. The post Ghosting Bots: The Story of Hoaxcalls Failures ...

Understanding & Stopping Malicious Redirects

Many website owners don’t know they’re infected with malicious redirects until they start getting calls from wary customers. Instead of the site they were expecting, it loaded some pretty shady content from ...
11-Plus Supercomputers Hacked With Cryptominers

11-Plus Supercomputers Hacked With Cryptominers

High-performance computers across Europe have been shut down to clear out malware infestations. There’s also evidence of attacks in the US ...
Security Boulevard

Ramsey Malware

A new malware, called Ramsey, can jump air gaps: ESET said they've been able to track down three different versions of the Ramsay malware, one compiled in September 2019 (Ramsay v1), and ...
Android Malware in COVID-19 Clothes Steals SMS and Contacts

Android Malware in COVID-19 Clothes Steals SMS and Contacts

Criminals are using an old certificate to sign a malware that takes advantage of the COVID-19 pandemic situation, preying on people’s need for information. The goal is to steal personal data, including ...

WordPress Malware Collects Sensitive WooCommerce Data

During a recent investigation, our team found malicious code that reveals how attackers are performing reconnaissance to identify if sites are actively using WooCommerce in a compromised hosting environment. These compromised websites ...