Ryuk ransomware attacks businesses over the holidays
Over the holiday, a little-known ransomware family called Ryuk caused serious damage to numerous organizations. The attacks leave a lot of questions unanswered. What do we know so far?
What’s in the spam mailbox this week?
We take a look at a few of the most notable spam emails in circulation over the last week, including a money muling scam, Apple phishes, and a sexploitation message featuring old, but real, passwords.
Five easy ways to recognize and dispose of malicious emails
What should you check for to determine if an email is spam or malicious? Here are five red flags to look for—and what to do with those malicious emails when you find them.
Internet Shortcut used in Necurs malspam campaign
The Necurs gang tries out a new trick to load malware and bypass security defenses.
Labs CTNT report shows shift in threat landscape to cryptomining
What did we learn about cybercrime in the quarterly Labs CTNT report? Malicious cryptomining has taken over in 2018, and it’s leaving all other malware families behind.
Know your threats: the nine scariest malware monsters
It’s been a particularly ghoulish year in cybersecurity, from Russian hacks to ransomware outbreaks. The bad boogey man in the black hoodie has been pulling one over the collective public. It’s dark and creepy, but users refuse to stop peeking behind the door. It’s enough to make even the most grizzled IT admin run for…
Old MS Office feature weaponized in malspam attacks
An old Microsoft Office feature has been brought back to the forefront as way to distribute malware without relying on macros or exploits.
Labs report: summer ushers in unprecedented season of breaches
In this edition of the Malwarebytes Cybercrime Tactics and Techniques report, we saw a number of high profile breaches targeting the personal information of hundreds of millions of people. We also observed shifts in malware distribution, the revival of some old families, and found cases of international tech support scams.
Fake IRS notice delivers customized spying tool
Threat actors leverage a Microsoft Office exploit to spy on their victims. In this blog post, we will review its delivery mechanism and analyze the malware we observed, a modified version of a commercial Remote Administration Tool (RAT).
Locky ransomware returns to the game with two new flavors
We recently observed a fresh malicious spam campaign pushed through the Necurs botnet distributing so far, two new variants of Locky ransomware.