Threat Intel

Left Image

Retro gaming fans are the new target for fake GitHub malware

| | EQVita, GitHub, PlayStation Vita, SBN News, Threat Intel, Vita plugin
Retro gaming fans should be careful with GitHub projects that claim to be tools or plugins for their consoles. We looked at one example aimed at PlayStation Vita owners ...
Malwarebytes
“Free World Cup stream” sites are serving scams, not football

“Free World Cup stream” sites are serving scams, not football

| | Scams, Threat Intel, worldcup
We found dozens of fake World Cup streaming sites using football as bait to funnel visitors through a malicious advertising network ...
Malwarebytes
Figure 1: Open Directory hosting EtherRAT MSI 

Inside a malicious infrastructure delivering EtherRAT, phishing pages, and malicious software 

| | EtherRAT, Malware, Phishing, Threat Intel, Threat Intelligence
We found EtherRAT malware being distributed by a website with a strange homepage. Following the trail, we discovered a vast network of malicious infrastructures, distributing malware, malicious documents, remote desktop software, and phishing pages.  ...
Malwarebytes
Fake FACEIT verification page

Fake verification pages are stealing Steam accounts from players

| | Scams, Threat Intel
A convincing fake FACEIT verification page is stealing Steam accounts by using a fake login window that looks completely legitimate ...
Malwarebytes

The Login Was the Breach

| | Active Directory, Threat Intel
For years, Active Directory breaches were associated with exploit chains, malware, lateral movement, and ransomware deployment. The assumption was simple: attackers had to break through security controls before they could gain access ...
Blog | Enzoic

Pirated PC games are delivering password-stealing malware

| | piracy, Ren'Py, SBN News, Threat Intel
Cybercriminals are hiding malware in cracked and repacked games, infecting more than 400,000 devices worldwide ...
Malwarebytes
Man-on-the-Side Attacks on the Internet - Erik Hjelmvik

Maximizing IOC Impact

| | C2, IOC, MISP, OTX, Threat Intel, Threat Intelligence, ThreatFox
Ive been thinking about threat intelligence lately. Specifically: indicators of compromise (IOC), how and where to share them to cause maximum pain to adversaries and help as many organizations as possible protect ...
NETRESEC Network Security Blog
We found this fake-invoice campaign while scammers were still building it

We found this fake-invoice campaign while scammers were still building it

| | Scams, Threat Intel
Invoices pretending to be from Amazon, PayPal, and others reveal how criminals use fear and phone calls to steal money and devices ...
Malwarebytes
Infostealers are becoming the go-to phishing payload

Infostealers are becoming the go-to phishing payload

| | infostealers, PHaaS, Phishing, Scams, Threat Intel
Cybercriminals prefer infostealers to traditional phishing techniques because they reduce friction, scale well, and are widely available ...
Malwarebytes
Fake copyright removal request pretending to be from the Chrome Web Store.

These convincing copyright notices are designed to steal Google logins

| | Scams, Threat Intel
Scammers use fake takedown requests, countdown timers, and spoofed sign-in screens to steal Google logins from Chrome developers ...
Malwarebytes
Load more