New RIG malvertising campaign uses cryptocurrency theme as decoy

This malvertising campaign uses a popular cryptocurrency theme to redirect users to the RIG exploit kit. Categories: Exploits Threat analysis Tags: cryptocurrenciesmalvertisingRIGRIGEK (Read more...) The post New RIG malvertising campaign uses cryptocurrency theme as decoy appeared first on Malwarebytes Labs.
Read more

GandCrab ransomware distributed by RIG and GrandSoft exploit kits

Ransomware may have slowed its growth but is still a go-to payload for threat actors looking to monetize drive-by download attacks. The latest attempt: GandCrab ransomware. Categories: Exploits Threat analysis Tags: exploit kitsgandcrabgandcrab ransomwaregrandsoftransomwareRIG (Read more...) The post GandCrab ransomware distributed by RIG and GrandSoft exploit kits appeared first on Malwarebytes Labs.
Read more

Seamless campaign serves RIG EK via Punycode

The most prolific gate to the RIG exploit kit is coming in a different flavor. The Seamless campaign is now using a domain name with foreign characters translated by Punycode. Categories: Exploits Threat analysis Tags: phishingPunycoderamnitRamnit TrojanRIGRIGEKSeamlesstrojan (Read more...) The post Seamless campaign serves RIG EK via Punycode appeared first on Malwarebytes...
Read more

Labs report: summer ushers in unprecedented season of breaches

In this edition of the Malwarebytes Cybercrime Tactics and Techniques report, we saw a number of high profile breaches targeting the personal information of hundreds of millions of people. We also observed shifts in malware distribution, the revival of some old families, and found cases of international tech support scams. Categories: Malwarebytes news Tags: 3rd quarterandroid malwareastrumbreachcerbercybercrimecybercrime tactics and techniquesemotetEquifaxexploit...
Read more

A week in security (August 28 – September 3)

Last week, we looked at what actions Kronos can perform in the final installment of a 2-part post. We also dived into Locky, again, a ransomware that just made a comeback, and found that its latest variant (as of this writing) has anti-sandboxing capabilities. This means that once Locky has determined that it’s residing in... Categories: Security world Week in security Tags: 419 scamexploit kitinsider threatskronosLockymalvertising
Read more