HackDig : Dig high-quality web security articles for hackers

Microsoft’s case study: Emotet took down an entire network in just 8 days

Microsoft declared that an Emotet attack took down an organization’s network by overheating all the computers and bringing its Internet access down. Microsoft shared details of the Emotet attack suffered by an organization named Fabrikam in the Microsoft’s Detection and Response Team (DART) Case Report 002, where Fabrikam is a fake name the I
Publish At:2020-04-04 15:17 | Read:448 | Comments:0 | Tags:Breaking News Hacking EMOTET information security news it se

A week in security (March 16 – 22)

Last week on Malwarebytes Labs, we concluded our series on child identity theft. We also looked into threat actors and campaigns that ride the COVID-19 train, namely the criminal group APT36 and threat actors purporting to be the World Health Organization (WHO) but instead spreading malware. Lastly, we have tips for those who are working at home to stay secu
Publish At:2020-03-23 13:16 | Read:336 | Comments:0 | Tags:A week in security APT36 awis covid-19 emotet fake news mone

Coronavirus news used by Emotet and Trickbot to evade detection

Threat actors exploit the interest in the Coronavirus outbreak while infections increase worldwide, new campaigns aim at spreading TrickBot and Emotet Trojans. Experts warn of new Coronavirus-themed attacks that are spreading TrickBot and Emotet Trojans. Operators behind these campaigns are using new Coronavirus-themed messages to attempt to bypass se
Publish At:2020-03-19 04:33 | Read:557 | Comments:0 | Tags:Breaking News Cyber Crime Malware coronavirus covid19 EMOTET

Zyxel Fixes 0day in Network Storage Devices

Patch comes amid active exploitation by ransomware gangs Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage (NAS) devices that can be used to remotely commandeer them. The patch comes 12 days after KrebsOnSecurity alerted the company that precise instructions for exploiting the vulnerabili
Publish At:2020-02-24 15:24 | Read:365 | Comments:0 | Tags:Latest Warnings The Coming Storm Time to Patch 0day 500mhz a

WLAN: Emotet’s new distribution method

These days, Emotet seems to be an ever-present danger for organizational cybersecurity the world over. Just last month, it was discovered trying to make its way into the United Nations, and in 2019, it was a key player in the successive waves of ransomware that hit enterprises and public organizations from the USA to Europe. So prolific was the activity of t
Publish At:2020-02-21 11:50 | Read:438 | Comments:0 | Tags:Business News b2b emotet wi-fi

A week in security (February 10 – 16)

Last week on Malwarebytes Labs, we explained how to battle online coronavirus scams with facts, discussed the persistent re-infection techniques of Android/Trojan.xHelper and how to remove it, provided cyber tips for safe online dating, and showed how Hollywood teaches us misleading cybersecurity lessons. We also released the 2020 State of Malware Report
Publish At:2020-02-18 15:49 | Read:604 | Comments:0 | Tags:A week in security accusoft CISO coronavirus Dell emotet Equ

Malwarebytes Labs releases 2020 State of Malware Report

Malwarebytes Labs today released the results of our annual study on the state of malware—the 2020 State of Malware Report—and as usual, it’s a doozy. From an increase in enterprise-focused threats to the diversification of sophisticated hacking and stealth techniques, the 2019 threat landscape was shaped by a cybercrime industry that aimed to show i
Publish At:2020-02-11 04:50 | Read:672 | Comments:0 | Tags:Reports 2020 state of malware report adware Android android

Battling online coronavirus scams with facts

Panic and confusion about the recent coronavirus outbreak spurred threat actors to launch several malware campaigns across the world, relying on a tried-and-true method to infect people’s machines: fear. Cybercriminals targeted users in Japan with an Emotet campaign that included malicious Word documents that allegedly contained information about coronav
Publish At:2020-02-10 16:47 | Read:578 | Comments:0 | Tags:Social engineering 2019-nCoV CDC Centers for Disease Control

Email Attackers Abusing Coronavirus Outbreak to Spread Emotet

Security researchers observed email attackers abusing the coronavirus outbreak to infect concerned users with the Emotet trojan.IBM X-Force found that the attack emails appeared to originate from a Japanese disability welfare service provider. Those emails informed recipients that officials had learned of a developing coronavirus outbreak in Japan’s Gi
Publish At:2020-02-09 10:21 | Read:381 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Coronav

An Emotet campaign hits the United Nations

Emotet is one of the most persistent and dangerous cyberthreats around today. According to the latest statistics, there are over 30,000 variants of this botnet, which was first seen as a banking Trojan back in 2014. Last year, Emotet represented 45% of the URLs that were used to download malware. According to Any.Run, a public service that allows interaction
Publish At:2020-01-30 10:35 | Read:655 | Comments:0 | Tags:Business News Botnet emotet Phishing

Tampa Bay Times hit with Ryuk ransomware attack

Florida newspaper The Tampa Bay Times suffered a Ryuk ransomware attack Thursday, making it the latest major victim of the notorious ransomware family that continues to rise in popularity. Curiously, the paper is at least the third Florida-based Ryuk victim in the past year. The attack, which The Tampa Bay Times reported on itself, did not result in a
Publish At:2020-01-24 16:50 | Read:1234 | Comments:0 | Tags:Ransomware Chicago Tribune CrowdStrike DCH Health System emo

[SANS ISC] Complex Obfuscation VS Simple Trick

I published the following diary on isc.sans.edu: “Complex Obfuscation VS Simple Trick“: Today, I would like to make a comparison between two techniques applied to malicious code to try to bypass AV detection. The Emotet malware family does not need to be presented. Very active for years, new waves of attacks are always fired using different in
Publish At:2020-01-23 08:20 | Read:1346 | Comments:0 | Tags:Malware SANS Internet Storm Center Security Emotet Maldoc Ob

A week in security (January 13 – 19)

Last week on Malwarebytes Labs, we taught you how to prevent a rootkit attack, explained what data enrichment means, informed you about new rules on deepfakes in the US, and demonstrated how backdoors in elastic servers expose private data. Other cybersecurity news An online group of cybersecurity analysts calling themselves Intrusion Truth have revea
Publish At:2020-01-20 16:50 | Read:693 | Comments:0 | Tags:A week in security apt40 Cisco citrix data enrichment deepfa

A decade in cybersecurity fails: the top breaches, threats, and ‘whoopsies’ of the 2010s

This post was co-authored by Wendy Zamora and Chris Boyd. All opinions expressed belong to your mom. Back in the days before climate change stretched frigid winter months directly into the insta-sweat of summer, there was a saying about March: in like a lamb, out like a lion. The same might be said about the last decade in cybersecurity fails. What kic
Publish At:2019-12-19 16:50 | Read:613 | Comments:0 | Tags:Awareness ashley madison ashley madison hack BadRabbit cambr

Threat spotlight: The curious case of Ryuk ransomware

Ryuk. A name once unique to a fictional character in a popular Japanese comic book and cartoon series is now a name that appears in several rosters of the nastiest ransomware to ever grace the wild web. For an incredibly young strain—only 15 months old—Ryuk ransomware gaining such notoriety is quite a feat to achieve. Unless the threat actors behind its
Publish At:2019-12-12 21:50 | Read:1088 | Comments:0 | Tags:Threat spotlight AES average ransom amount BitPaymer BitPaym

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud