The Hidden Bee infection chain, part 1: the stegano pack
The Hidden Bee cryptominer has a complex and multi-layered internal structure that is unusual among cybercrime toolkits. That’s why we’re dedicating a series of posts to exploring its elements and updates made during one year of its evolution.
Exploit kits: summer 2019 review
In this edition of our seasonal review of exploit kits, we review active and unique EKs hitting consumers and businesses over the summer 2019 season.
Hidden Bee: Let’s go down the rabbit hole
The complex and sophisticated custom malware, Hidden Bee, is a Chinese cryptominer that recently released an updated sample. We unpack the sample to look at the functionality of its loader and compare it against earlier versions.
Electrum Bitcoin wallets under siege
Threat actors are relentlessly phishing and attacking Electrum Bitcoin wallet users, racking up millions of dollars.
Google Chrome zero-day: Now is the time to update and restart your browser
A particularly dangerous Google Chrome zero-day is already being used in real-world attacks. Despite Google’s auto update feature, users will need to close and restart their browser in order to be protected.
A week in security (February 25 – March 3)
A roundup of the past week’s news, including mobile threats, viral scares, PDF tracking, and more.
How threat actors are using SMB vulnerabilities
SMB vulnerabilities have been so successful for criminals that they’ve been used in some of the most devastating ransomware and Trojan attacks of the last two years. Learn how they work and how your organization can protect against them.
New ‘Under the Radar’ report examines modern threats and future technologies
Malwarebytes released a new report called “Under the Radar: The Future of Undetected Malware” that takes a look at current threats using next generation tricks, and how current security technologies stand up to these threats, as well as the threats to come.
Exploit kits: fall 2018 review
With a fresh exploit kit in town, the drive-by download landscape shows new signs of life in fall 2018.
Simple Authentication and Security Layer (SASL) vulnerabilities
The Simple Authentication and Security Layer (SASL) is an essential element of online authentication. But are you aware of all the known vulnerabilities? And, more importantly, have you patched them?
