A week in security (July 29 – August 4)

A roundup of security news from July 29 – August 4 including Capital One breach, Lord Exploit Kit, more Magecart skimming, ATM attacks, QR code scams, and Equifax payout.

Read more

Say hello to Lord Exploit Kit

In this blog, we take a look at a new exploit kit distributed via malvertising that calls itself Lord EK.

Read more

GreenFlash Sundown exploit kit expands via large malvertising campaign

The GreenFlash exploit kit, which we typically saw targeting South Korean users, reaches globally with a large malvertising campaign via a popular website.

Read more

Electrum Bitcoin wallets under siege

Threat actors are relentlessly phishing and attacking Electrum Bitcoin wallet users, racking up millions of dollars.

Read more

Vidar and GandCrab: stealer and ransomware combo observed in the wild

Threat actors combine new stealer Vidar and GandCrab ransomware in one-two punch.

Read more

A week in security (December 17 – 23)

A roundup of last week’s security news from December 17–23, including Christmas scams, phishing quizzes, Underminer, smart speakers, flawed Twitter form, Chromebook malware, and Fuchsia.

Read more

Exploit kits: fall 2018 review

With a fresh exploit kit in town, the drive-by download landscape shows new signs of life in fall 2018.

Read more

Magnitude exploit kit switches to GandCrab ransomware

After being faithful to its own Magniber ransomware for several months, Magnitude EK joins others to adopt GandCrab.

Read more

Hermes ransomware distributed to South Koreans via recent Flash zero-day

An uncommon exploit kit adds a fresh Flash Player exploit to distribute the Hermes ransomware in South Korea.

Read more

Avzhan DDoS bot dropped by Chinese drive-by attack

The Avzhan DDoS bot is back in the wild again, this time being dropped by a Chinese drive-by attack. In this post, we’ll take a deep dive into its functionality and compare the sample we captured with the one described in the past.

Read more

Select your language