New Chrome and Firefox extensions block their removal to hijack browsers

Two new extensions in Firefox and Chrome force install then hide from the user. Learn how you can protect yourself against them and remove them manually. Categories: Malware Threat analysis Tags: blockedchromeextensionsfirefoxnormal removalPieter Arntz (Read more...) The post New Chrome and Firefox extensions block their removal to hijack browsers appeared first on Malwarebytes Labs.
Read more

Downloaders on Google Play spreading malware to steal Facebook login details

Multiple downloaders, malicious apps that download further malicious apps to infected devices, have made it onto the Google Play Store. The downloaders are capable of downloading further apps that pose as system apps, some of which are capable of stealing Facebook login credentials. To do so, the malicious apps use social engineering tactics to trick victims into giving them up.
Read more

Microsoft Office Vulnerabilities Used to Distribute Zyklon Malware in Recent Campaign

Introduction FireEye researchers recently observed threat actors leveraging relatively new vulnerabilities in Microsoft Office to spread Zyklon HTTP malware. Zyklon has been observed in the wild since early 2016 and provides myriad sophisticated capabilities. Zyklon is a publicly available, full-featured backdoor capable of keylogging, password harvesting, downloading and executing additional plugins, conducting distributed denial-of-service (DDoS) attacks, and self-updating and self-removal. The malware may communicate with its command and control (C2) server over The Onion Router (Tor) network if configured to do so. The malware can download several plugins, some of which include features such as cryptocurrency mining and password recovery, from browsers and email software. Zyklon also provides a very efficient mechanism to monitor the spread and impact. Infection Vector We have observed this recent wave of Zyklon malware being delivered primarily through spam emails. The email typically arrives with an attached ZIP file containing a malicious DOC file (Figure 1 shows a sample lure). The following industries have been the primary targets in this campaign: Telecommunications Insurance Financial Services Figure 1: Sample lure documents Attack Flow Spam email arrives in...
Read more

Crypto-Miner Named the “Most Wanted” Malware for December 2017

A JavaScript-based cryptocurrency miner earned the top spot in a list of the “most wanted” malware for December 2017. For its final Global Threat Index of 2017, Check Point observed Coinhive supplant Roughted, a large-scale malvertising campaign, as the most prevalent form of malware. This Monero-miner made waves back in October 2017 when it registered … Read More The post Crypto-Miner Named the “Most Wanted” Malware for December 2017 appeared first on The State of Security.
Read more

Cybersecurity quiz winners rewarded with malware-infected USB sticks

It is a truth universally acknowledged in the infosecurity community, that giving away free USB sticks only leads to trouble. On countless occasions we’ve seen businesses embarrassed as they hand out thumb drives which are not only stuffed to the brim with marketing material, but are also unwittingly hiding malware. And yet, companies continue to
Read more

The Rise of URL Defense

URL Defense is Becoming An important Part Of Cyber Security With the meteoric rise in targeted phishing attacks, one fact has remained constant: they all start with email. Spam filters block spam – more than 99.95% of it. While only 1 out of 2000 spam emails would get through to pester your colleagues, targeted phishingRead more The post The Rise of URL Defense appeared first on Vircom | Email Security Experts.
Read more

Fake Spectre and Meltdown patch pushes Smoke Loader malware

German users are being targeted with a rogue patch for the recently announced Meltdown and Spectre flaws. Categories: Cybercrime Social engineering Tags: germanmalwareMeltdownphishingsmoke loaderSmoke Loader MalwaresmokeloaderSpectre (Read more...) The post Fake Spectre and Meltdown patch pushes Smoke Loader malware appeared first on Malwarebytes Labs.
Read more
Page 1 of 2812345...1020...Last »