An emergency patch (7.1.2) has been released for an actively exploited zero-day vulnerability found in the GoAnywhere MFT administrator console. GoAnywhere MFT, which…
Tag: cobalt strike
Silence is golden partner for Truebot and Clop ransomware
A recent rise in the number of Truebot infections has been attributed to a threat actor known as the Silence Group….
A week in security (July 11 – July 17)
Last week on Malwarebytes Labs: Stay safe!
Cobalt Strikes again: UAC-0056 continues to target Ukraine in its latest campaign
This blog was authored by Roberto Santos and Hossein Jazi The Malwarebytes Threat Intelligence team recently reviewed a series of cyber…
[updated]Unpatched Atlassian Confluence vulnerability is actively exploited
Researchersfound a vulnerability in Atlassian Confluence by conducting an incident response investigation. Atlassian rates the severity level of this vulnerability as…
A multi-stage PowerShell based attack targets Kazakhstan
This blog post was authored by Hossein Jazi. On November 10 we identified a multi-stage PowerShell attack using a document lure…
Malspam banks on Kaseya ransomware attack
The Malwarebytes Threat Intelligence Team recently found a malicious spam campaign making the rounds and banking on the ransomware attack that…
A week in security (May 31 – June 6)
Last week on Malwarebytes Labs, we looked at an interesting trend in facial recognition technology—hint: it’s a slow fade, the latest…
Cobalt Strike, a penetration testing tool abused by criminals
If you were to compose a list of tools and software developed by security and privacy defenders that ended up being…
Report goes “behind enemy lines” to reveal SilverFish cyber-espionage group
The PRODAFT Threat Intelligence Team has published a report (pdf) that gives an unusually clear look at the size and structure…