HackDig : Dig high-quality web security articles for hacker

The Magala Trojan Clicker: A Hidden Advertising Threat

One large group will slowly conquer another large group, reduce its numbers, and thus lessen its chance of further variation and improvement. <…> Small and broken groups and sub-groups will finally tend to disappear. Charles Darwin. ‘On the Origin of Species’ The golden age of Trojans and viruses has long gone. Malicious programs
Publish At:2017-07-12 10:00 | Read:2858 | Comments:0 | Tags:Research Adware PUPs Trojan

PUP Friday: Bubbling Over

At Malwarebytes Labs, we’re never short of PUPs to analyse and explore. As per our telemetry to date, SweetIM is one of the top PUPs Malwarebytes Anti-Malware (MBAM) detects and removes from our clients systems. In order to get to know what SweetIM software does on a user’s system, we have selected Bubble Hit by GamePacks (MD5: 0326564318717b9826c4b81eb5d342
Publish At:2016-05-21 10:20 | Read:3779 | Comments:0 | Tags:PUPs Threat analysis bubble hit gamepackers PUP Friday sweet

PUP Friday survey results and feedback

In the beginning of the year, we asked our readers for their input about our PUP Friday initiative. For those of you that took the time to fill out the survey or post their comments, thank you for your feedback and continuous support! The numbers We had hundreds of readers that filled out our survey. Which is pretty great. Thanks for that. Over 95% of them a
Publish At:2016-04-16 10:50 | Read:2978 | Comments:0 | Tags:PUPs Threat analysis feedback PUP Friday results survey

SafeSoft Protector Abuses Privoxy

Author’s Note: We at Malwarebytes continue to do our part in educating our product users and constant blog readers about day-to-day online threats and how they can avoid falling prey to them. “PUP Friday”, our latest attempt at getting users acquainted with files they may need to watch out for in the Wild Web, offers an in-depth look at some interesting and
Publish At:2016-04-09 22:35 | Read:2528 | Comments:0 | Tags:PUPs Threat analysis PUP PUP Friday safesoft protect techsna

AdLoad: an advertisement bombarder

While looking into an infection associated with a “system optimizer”—Didn’t we say they’re digital snake oil?—we identified a multi-functional installer called FAsetup1.exe (md5 902e30fa3dc4bf543b523b4a41eb8acd) as the source. This file offers a variety of different bundlers and scams that are usually different every time you run the
Publish At:2016-04-06 21:35 | Read:3660 | Comments:0 | Tags:PUPs Threat analysis adload advertisement fake alert Malware

Vonteera Adware Uses Certificates to Disable Anti-Malware

Vonteera is an adware family that has been around for years. They stand out from the rest because of their very intrusive changes to the affected systems, which is why you will see them classified as Trojan by some anti-malware solutions. Recently, they added a new trick to their arsenal: using system certificates to disable anti-malware and anti-virus softw
Publish At:2015-11-20 21:25 | Read:3140 | Comments:0 | Tags:Security Threat Anti-Malware antivirus certificates malware

This isn’t the Java I ordered!

On several sites, we have seen reports of popups that look very similar to the one Java used to notify users when the content of a site requires the Java plugin to show the full content. But if we follow this particular prompt we get something completely different called “Media Downloader”. The downloaded file is called setup.exe and is recognized by a few
Publish At:2015-10-22 14:50 | Read:3461 | Comments:0 | Tags:Online Security fake java Pieter Arntz popups PUPs

eFast browser hijacks file associations

Author’s Note: We at Malwarebytes continue to do our part in educating our product users and constant blog readers about day-to-day online threats and how they can avoid falling prey to them. “PUP Friday”, our latest attempt at getting users acquainted with files they may need to watch out for in the Wild Web, offers an in-depth look at some interesting and
Publish At:2015-10-17 08:50 | Read:2747 | Comments:0 | Tags:Online Security Pieter Arntz PUP Friday PUPs

Don’t take this Lucky Wheel for a Spin…

Today we’re going to look at another site which wants you to fire up Whatsapp and spam messages to friends [1], [2] in order to claim a prize. In this case, the route to victory involves their so-called Lucky Wheel. The Bit.ly URL bit(dot)ly/globalwheel has been doing a roaring trade in clicks since the 7th of July, with a total of 432,205 clicks so fa
Publish At:2015-07-16 10:30 | Read:6511 | Comments:1 | Tags:Online Security lucky wheel Mobile PUPs spam whatsapp

Digital Snake Oil

  A word on registry cleaners. One of the most common complaints we see on our forums, and from our users, concerns a particular category of program called “Registry Optimizers” or “Registry Cleaners” or “Registry Defragmenters”. For this post, we will just refer to them as registry cleaners.   Who makes this software? There
Publish At:2015-06-23 12:50 | Read:3053 | Comments:0 | Tags:Social Engineering Malwarebytes popups PUPs registry cleaner

Bogus Search Engine Leads to Exploits

Here at Malwarebytes, we take a pretty strong stance against Adware in general, and Potentially Unwanted Programs (PUPs) in particular. We believe the majority of people do not want their computers to get slowed down, their browsing experience disturbed by annoying ads or their search results to return irrelevant answers. Sadly, devious software makers are u
Publish At:2015-02-27 19:30 | Read:3287 | Comments:0 | Tags:Online Security exploit Malwarebytes PUPs

Windows 10 Activation Programs: PUPs and Surveys

Leapfrogging from one version of Windows to another is a big deal these days, especially with Windows 7 exiting mainstream support and elsewhere in Windows land the case for abandoning XP is made once more. You’ve probably seen Windows 10 in action by this point – the question here is whether you’ll run that Windows 10 Activator you saw on
Publish At:2015-02-16 15:25 | Read:3344 | Comments:0 | Tags:Online Security activation PUP PUPs survey windows 10

Changes in the LSP stack

What does LSP stand for? LSP is short for Layered Service Provider. A Layered Service Provider is a file (.dll) using the Winsock API to insert itself into the TCP/IP stack. There, all the traffic between the internet and a computers applications can be intercepted, filtered and even modified. That sounds dangerous! Well, it can be. For example, it is being
Publish At:2014-10-13 19:35 | Read:2431 | Comments:0 | Tags:Malwarebytes News Malwarebytes Pieter Arntz PUPs

Celebrity’s “Final Words” Fake Video Leads to PUP

Exactly a week ago, Raphael Joseph De Mesa Eigenmann, a Filipino actor famously known as Mark Gil, died of cancer, and Facebook scammers have used a so-called video of his last words to perpetuate unwanted applications. If you see the below post appear on your Facebook feed, whether it came from an acquaintance, a close friend, or a relative, we urge you to
Publish At:2014-09-08 01:00 | Read:4831 | Comments:0 | Tags:Fraud/Scam Alert celebrity death facebook facebook scam PUPs

ITsecurity Daily News: 09/02/2014

ITsecurity Daily News: 09/02/2014 The ITsecurity daily security briefing: Tuesday, September 2, 2014.If you find this security briefing useful, please spread the word via social media. If you have any comments or recommendations, please email kevtownsend at gmail dot com.NewsPapers/Rep
Publish At:2014-09-02 19:00 | Read:7138 | Comments:0 | Tags:News AV-TEST BlackPOS commerce CREST DDoS internet of things


Share high-quality web security related articles with you:)


Tag Cloud