malvertising – Page 6 – PossibleThreat Articles

WOOF locker: Unmasking the browser locker behind a stealthy tech support scam operation

January 22, 2020 0 Comments 404browlock, 404error, browlock, browlocks, browser guard, browser locker, chrome, Edge, firefox, malvertising, malvertising campaigns, Microsoft, scams, Social engineering, steganography, tech support, Tech support scams, Threat analysis, tss, woof

Credit to Author: Jérôme Segura| Date: Wed, 22 Jan 2020 16:00:00 +0000

We reveal the inner workings of WOOF locker, the most sophisticated browser locker campaign we’ve seen to date. Learn how this tech support scam evades researchers and ensnares users by hiding in plain sight.

Categories:

Threat analysis

Tags: 404Browlock 404error browlock browlocks Browser guard browser locker chrome Edge firefox malvertising malvertising campaigns microsoft scams Social Engineering steganography tech support tech support scams TSS WOOF

MalwareBytes Security

Spelevo exploit kit debuts new social engineering trick

December 18, 2019 0 Comments EK, exploit kit, gozi, malvertising, qakbot, Qbot, Social engineering, Spelevo, Threat analysis, ursnif

Credit to Author: Jérôme Segura| Date: Wed, 18 Dec 2019 16:00:00 +0000

In order to maximize infection rate, threat actors are now launching the Spelevo exploit kit with a decoy adult site, social engineering users into downloading a malicious video player.

Categories:

Threat analysis

Tags: EK exploit kit Gozi malvertising Qakbot Qbot Social Engineering Spelevo Ursnif

Security Sophos

Brave 1.0 launches, extends ad-watching payouts to iOS

November 15, 2019 0 Comments ad blocker, ad tracking, basic attention tokens, bat, Brave, brave 1.0, cryptocurrency, iOS, malvertising, Mobile, Privacy, Tracking, Web Browsers

Credit to Author: Lisa Vaas| Date: Fri, 15 Nov 2019 11:36:08 +0000

It’s showtime: Finally out of beta comes the browser that promises privacy, anonymity and cryptocurrency in exchange for your eyeballs.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/oVgTjmFNurY” height=”1″ width=”1″ alt=””/>

Security Sophos

WordPress sites hit by malvertising

November 7, 2019 0 Comments malvertising, malware, plugins, security threats, vulnerability, wordfence, Wordpress, WordPress plugin, wp-vcd

Credit to Author: Danny Bradbury| Date: Thu, 07 Nov 2019 14:01:01 +0000

An old piece of malware is storming the WordPress community, enabling its perpetrators to take control of sites and inject code of their choosing.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/G42iCdpslDg” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

300 shades of gray: a look into free mobile VPN apps

September 10, 2019 0 Comments Android, anonymity, Apple App Store, black mirror, CDT, centennials, Commonwealth Scientific and Industrial Research Organization, CSIRO, dark web, DNS hijacking, DNS leak, emerging markets, encryption, fake av, free, free VPN, Global Web Index, GlobalWebIndex, Google Play Store, Guideline 5.4, Hotspot Shield, Hotspot Shield complaint, Innet VPN, iOS, IPv6 leak, KilpVip, Luminati, malvertising, millenials, mobile VPN apps, motivations for VPN usage, MyMobileSecure, Netflix, onion browser, Privacy, Queen Mary University of London, risk-free, Rob Mardisalu, rogueware, Sapienza University of Rome, Secnet VPN, Simon Migliano, TheBestVPN, top 20 VPN apps, Top10VPN, transparency, UC Berkeley, University of South Wales, virtual private networks, vpn

Credit to Author: Jovi Umawing| Date: Tue, 10 Sep 2019 16:41:45 +0000

Mobile VPN apps are one of the best tools for protecting user privacy. Unfortunately, a notable number of are deemed unsafe. Read on to find out how to assess the best mobile VPN for you.

Categories:

Privacy

Tags: Android anonymity Apple App Store black mirror CDT centennials Commonwealth Scientific and Industrial Research Organization CSIRO Dark Web DNS hijacking DNS leak emerging markets encryption fake av free free VPN Global Web Index GlobalWebIndex Google Play Store Guideline 5.4 Hotspot Shield Hotspot Shield complaint Innet VPN iOS IPv6 leak KilpVip Luminati malvertising millenials mobile VPN apps motivations for VPN usage MyMobileSecure netflix onion browser privacy Queen Mary University of London risk-free Rob Mardisalu rogueware Sapienza University of Rome Secnet VPN Simon Migliano TheBestVPN top 20 VPN apps Top10VPN transparency UC Berkeley University of South Wales virtual private networks vpn

Security Sophos

WordPress sites are being backdoored with rogue admin users

September 2, 2019 0 Comments malvertising, plugin, rogue admin, vulnerability, wordfence, Wordpress

Credit to Author: John E Dunn| Date: Mon, 02 Sep 2019 14:58:07 +0000

A malvertising campaign has evolved to give hackers control of entire sites.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/O3jHDYTQtss” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Say hello to Lord Exploit Kit

August 2, 2019 0 Comments EK, eris, exploit kit, exploits, Lord EK, malvertising, njRAT, Ransomware, Threat analysis

Credit to Author: Jérôme Segura| Date: Fri, 02 Aug 2019 18:15:24 +0000

In this blog, we take a look at a new exploit kit distributed via malvertising that calls itself Lord EK.

Categories:

Tags: EK eris exploit kit Lord EK malvertising njRAT ransomware

(Read more…)

The post Say hello to Lord Exploit Kit appeared first on Malwarebytes Labs.

MalwareBytes Security

Threat Spotlight: Sodinokibi ransomware attempts to fill GandCrab void

July 19, 2019 0 Comments 177a571d7c6a6e4592c60a78b574fe0e, bf9359046c4f5c24de0a9de28bbabd14, caas, Cisco Talos, crime-as-a-service, CVE-2018-8453, CVE-2019-2725, e713658b666ff04c9863ebecb458f174, FruitArmor APT, gandcrab, Heaven's Gate, malvertising, managed service providers, msp hack, Oracle WebLogic vulnerability, raas, Ransom.Sodinokibi, Ransomware, Ransomware as a Service, revil, salsa20, shadow copy, sodin, Sodinokibi, Threat spotlight, volume snapshot service, vss, Win32k vulnerability, zero-day vulnerability

Credit to Author: Jovi Umawing| Date: Thu, 18 Jul 2019 17:58:26 +0000

There’s a new ransomware-as-a-service (RaaS) in town, and it can twist tongues for giggles as much as twist organizations’ arms for cash. Get to know the Sodinokibi ransomware, including how to protect against this fledgling threat.

Categories:

Threat spotlight

Tags: 177a571d7c6a6e4592c60a78b574fe0e bf9359046c4f5c24de0a9de28bbabd14 caas Cisco Talos crime-as-a-service CVE-2018-8453 CVE-2019-2725 e713658b666ff04c9863ebecb458f174 FruitArmor APT gandcrab Heaven’s Gate malvertising managed service providers msp hack Oracle WebLogic vulnerability raas Ransom.Sodinokibi ransomware Ransomware as a Service revil salsa20 shadow copy sodin Sodinokibi volume snapshot service vss Win32k vulnerability zero-day vulnerability

MalwareBytes Security

GreenFlash Sundown exploit kit expands via large malvertising campaign

July 19, 2019 0 Comments EK, exploit kit, GreenFlash Sundown, malvertising, seon ransomware, Threat analysis

Credit to Author: Jérôme Segura| Date: Wed, 26 Jun 2019 18:30:48 +0000

The GreenFlash exploit kit, which we typically saw targeting South Korean users, reaches globally with a large malvertising campaign via a popular website.

Categories: