Internet Explorer users still targeted by RIG exploit kit

Categories: News

Tags: RIG EK

Tags: exploit kit

Tags: MakeMoney

Tags: Internet Explorer

Tags: Jerome Segura

The RIG Exploit Kit is one of the last major exploit kits that still targets the legacy Internet Explorer browser.

(Read more…)

The post Internet Explorer users still targeted by RIG exploit kit appeared first on Malwarebytes Labs.

Read more

CISA issues alert with South Korean government about DPRK’s ransomware antics

Categories: News

Categories: Ransomware

Tags: CISA

Tags: ransomware

Tags: Democratic People’s Republic of Korea

Tags: DPRK

Tags: North Korea

Tags: WannaCry

Tags: EternalBlue

Tags: Lazarus Group

Tags: APT

Tags: Magniber

Tags: Magnitude exploit kit

Tags: exploit kit

Tags: EK

Tags: Andariel

Tags: Silent Chollima

Tags: Stonefly

Tags: Maui

Tags: H0lyGh0st

Tags: PLUTONIUM

Tags: Conti

The tactics of North Korean-sponsored ransomware cyberattacks against the healthcare sector and other vital infrastructure are highlighted in the latest #StopRansomware alert.

(Read more…)

The post CISA issues alert with South Korean government about DPRK’s ransomware antics appeared first on Malwarebytes Labs.

Read more

Urgent update for macOS and iOS! Two actively exploited zero-days fixed

Categories: Exploits and vulnerabilities

Categories: News

Tags: macOS

Tags: iOS

Tags: CVE-2022-32894

Tags: CVE-2022-32893

Tags: kernel privileges

Tags: WebKit

Tags: actively exploited

Tags: watering hole

Tags: exploit kit

Apple has released emergency security updates to fix two zero-day vulnerabilities previously exploited by attackers to hack iPhones, iPads, or Macs.

(Read more…)

The post Urgent update for macOS and iOS! Two actively exploited zero-days fixed appeared first on Malwarebytes Labs.

Read more

Spelevo exploit kit debuts new social engineering trick

Credit to Author: Jérôme Segura| Date: Wed, 18 Dec 2019 16:00:00 +0000

In order to maximize infection rate, threat actors are now launching the Spelevo exploit kit with a decoy adult site, social engineering users into downloading a malicious video player.

Categories:

Tags:

(Read more…)

The post Spelevo exploit kit debuts new social engineering trick appeared first on Malwarebytes Labs.

Read more

Exploit kits: fall 2019 review

Credit to Author: Jérôme Segura| Date: Tue, 19 Nov 2019 18:08:20 +0000

With even more exploit kits in town, the drive-by download landscape shows continued activity in fall 2019.

Categories:

Tags:

(Read more…)

The post Exploit kits: fall 2019 review appeared first on Malwarebytes Labs.

Read more

A week in security (July 29 – August 4)

Credit to Author: Malwarebytes Labs| Date: Mon, 05 Aug 2019 15:44:37 +0000

A roundup of security news from July 29 – August 4 including Capital One breach, Lord Exploit Kit, more Magecart skimming, ATM attacks, QR code scams, and Equifax payout.

Categories:

Tags:

(Read more…)

The post A week in security (July 29 – August 4) appeared first on Malwarebytes Labs.

Read more

Say hello to Lord Exploit Kit

Credit to Author: Jérôme Segura| Date: Fri, 02 Aug 2019 18:15:24 +0000

In this blog, we take a look at a new exploit kit distributed via malvertising that calls itself Lord EK.

Categories:

Tags:

(Read more…)

The post Say hello to Lord Exploit Kit appeared first on Malwarebytes Labs.

Read more

GreenFlash Sundown exploit kit expands via large malvertising campaign

Credit to Author: Jérôme Segura| Date: Wed, 26 Jun 2019 18:30:48 +0000

The GreenFlash exploit kit, which we typically saw targeting South Korean users, reaches globally with a large malvertising campaign via a popular website.

Categories:

Tags:

(Read more…)

The post GreenFlash Sundown exploit kit expands via large malvertising campaign appeared first on Malwarebytes Labs.

Read more