Last week on Malwarebytes Labs, we published our most recent episode of our podcast Lock and Code, providing an in-depth discussion on web browser privacy, looked at the membership bump for the Coalition against Stalkerware, and dug into EDR solutions. We also looked at twists added to the threat scene by Maze Ransomware. Other cybersecurity news Breac

Scammers and malware authors are taking advantage of the coronavirus crisis in full swing. We have seen a number of spam campaigns using COVID-19 as a lure to trick people into installing a variety of malware, but especially data stealers. As more of us work from home, the need to secure your computer, especially if you are connecting to your company̵

Phishers are back to using an old tactic in a new fashion to get hold of their victims’ credentials. One of the first lessons you will learn during anti-phishing training is to hover over the links in a mail to see if they point to the site where you would expect them to point. Although good advice, this is NOT a guarantee that you are going to be safe. Alwa

Last October, our own Jerome Segura uncovered a tech support scam trading on Malwarebytes’ good name. So half a year later, what happened to the perpetrators? Still scamming, apparently, and now with a snazzy new website! Rather than coding a website from scratch and possibly making mistakes, they seem to have lifted assets from the Malwarebytes websi

Good news, oh lucky winner! You’ve won a car, laptop, and a frankly terrifying amount of money after being entered in a prize draw. Well, that’s what the senders of the below missive want you to think, should you open it up in your mailbox. Titled “Dear Lucky Winner” and sent from the so-called “BMW Lottery Department”, th

More than a week after the FBI has decided to drop that case against Apple, it appears that the controversy surrounding all of this continues to keep us riveted to the news. Usually, people go to their favourite online publications; what shady actors behind equally shady news sites do, though, are the opposite. Users with UK IP addresses shouldn’t be s

Apple fans should steer clear of a convincing phishing mail doing the rounds, with the sender address popping up in a 419 scam not so long ago. Here’s the mail in question: It’s a fake tax receipt which states that a purchase has been made for “Rain Radar, Remove Ads”. If you didn’t make this purchase, you should visit the link

If you go looking for Google Docs related URLs on your travels, you may run into the following site (registered through an “Offshore anonymous hosting company” in Panama): googledocs(dot)info Despite the name, you won’t find your documents sitting in a pile waiting to be edited. Indeed, you’ll currently see this: If we had a magical

We’ve seen another run of Amazon themed spam doing the rounds, and they may well already be dropping into your mailbox. Here’s the email in question: The text is identical to the last one we took a look at (notice also the open red padlock, which is a new Gmail feature). As before, the link uses a redirect to send potential victims to an imitati

Remember the time when you won a ridiculous amount of money from a Casino you’d never heard of, much less visited? Me neither, but as it turns out it doesn’t really matter when dealing with the wacky world of email spam – where winnings are often plentiful despite not actually taking part: Going by the wonderfully informative title of R

We’ve recently come across a phish aimed at people working in / related to accounting firms, sent from a compromised accountant’s email address leading to a fake Google Docs page. The email reads as follows: Subject Important - For your review Hello, I've shared some files with you on Google Drive. Please, click on the E-Document to downlo

There has been a lot of talk about Nuclear EK recently, following Sucuri’s discovery about a large number of WordPress sites getting compromised to redirect to the exploit infrastructure. Here is another interesting spin: a Nuclear EK gate using a decoy CloudFlare DDoS check page while instead loading a malicious redirection that ultimately triggers th

Recently, a weather app caught our attention by doing something far worse than predicting rain all the time. It installed all the ingredients for a false Blue Screen Of Death (BSOD) with a number to call for assistance. WeatherWizard As the app is bearing the same name as one comic book “super villain” this might have been a warning that there was something

Fraudulent tech support companies are well-known for taking advantage of unsavvy computer users by reeling them in with scare tactics and charging large amounts of money for bogus services. In many cases, these crooks sell free security products (or straight up pirate them) for hundreds of dollars more than their actual retail price. Security vendors may not

We’ve spotted an advertising campaign that tricks users into clicking on what looks like a notification alert that actually hides a legitimate advert, therefore abusing both the advertiser and the ad network hosting the ad (Google Ads Services). The rogue actors behind this fraudulent activity are cleverly leveraging a European law on the use of cookie