HackDig : Dig high-quality web security articles for hacker

Domen toolkit gets back to work with new malvertising campaign

Last year, we documented a new social engineering toolkit we called “Domen” being used in the wild. Threat actors were using this kit to trick visitors into visiting compromised websites and installing malware under the guise of a browser update or missing font. Despite being a robust toolkit, we only saw Domen in sporadic campaigns last year,
Publish At:2020-02-28 14:45 | Read:73 | Comments:0 | Tags:Threat analysis buren ransomware Domen domen toolkit intelra

Rudy Giuliani’s Twitter mishaps invite typosquatters and scammers

Former cybersecurity czar Rudy Giuliani has been targeted by typosquatters on Twitter, thanks to copious misspellings and other keyboarding errors made in a number of his public tweets. In a tweet sent out on Sunday, Giuliani meant to send his 650,000-plus followers to his new website, RudyGiulianics.com. Instead, a space added after “Rudy” sent
Publish At:2020-02-19 14:35 | Read:162 | Comments:0 | Tags:Scams adware browser extensions cybersecurity czar giuliani

WOOF locker: Unmasking the browser locker behind a stealthy tech support scam operation

In the early days, practically all tech support scammers would get their own leads by doing some amateur SEO poisoning and keyword stuffing on YouTube and other social media sites. They’d then leverage their boiler room to answer incoming calls from victims. Today, these practices continue, but we are seeing more advanced operations with a clear sep
Publish At:2020-01-22 16:50 | Read:295 | Comments:0 | Tags:Threat analysis 404Browlock 404error browlock browlocks Brow

Spelevo exploit kit debuts new social engineering trick

2019 has been a busy year for exploit kits, despite the fact that they haven’t been considered a potent threat vector for years, especially on the consumer side. This time, we discovered the Spelevo exploit kit with its virtual pants down, attempting to capitalize on the popularity of adult websites to compromise more devices. The current Chromium-d
Publish At:2019-12-18 16:50 | Read:486 | Comments:0 | Tags:Threat analysis EK exploit kit Gozi malvertising Qakbot Qbot

How to Tell Safe Advertisements From Dangerous Malvertising

Advertising is the life blood of the internet. Some of the world’s biggest and most influential tech companies earn a large chunk of their revenue through harmless and safe advertisements, but some of the most successful cybercriminals also rely on advertising. When good ad networks are tricked into delivering malware, it’s known as malvertising.
Publish At:2019-10-18 10:20 | Read:540 | Comments:0 | Tags:Endpoint Fraud Protection Adware Artificial Intelligence (AI

New Fileless Botnet Novter Distributed by KovCoreG Malvertising Campaign

By Jaromir Horejsi and Joseph C. Chen (Threat Researchers) We found a new modular fileless botnet malware, which we named “Novter,” (also reported and known as “Nodersok” and “Divergent”) that the KovCoreG campaign has been distributing since March. We’ve been actively monitoring this threat since its emergence and early development, and saw it being frequen
Publish At:2019-10-01 08:20 | Read:1445 | Comments:0 | Tags:Bad Sites Botnets Malware botnet KovCoreG malvertising Nodst

Matrix Ransomware being distributed through malvertising

Security expert Jérôme Segura from Malwarebytes has spotted that Matrix Ransomware has risen again, it is now being distributed through malvertising. Malware researcher Jérôme Segura from Malwarebytes has discovered that Matrix Ransomware is now being distributed through malvertising campaign. #RIGEK drops Matrix ransomware. Payload https://t.co/PruaiZRuw9
Publish At:2017-10-29 22:20 | Read:4090 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking malvert

ProMediads Malvertising and Sundown-Pirate Exploit Kit Combo Drops Ransomware and Info Stealer

With additional insights/analysis from Chaoying Liu We’ve uncovered a new exploit kit in the wild through a malvertising campaign we’ve dubbed “ProMediads”. We call this new exploit kit Sundown-Pirate, as it’s indeed a bootleg of its precursors and actually named so by its back panel. ProMediads has been active as early as 2016, employing Rig and Sundown exp
Publish At:2017-07-19 15:35 | Read:4238 | Comments:0 | Tags:Bad Sites Exploits exploit kit LockPOS malvertising ProMedia

A fresh massive AdGholas Malvertising campaign infects millions

Researchers at Proofpoint discovered a massive AdGholas Malvertising Campaign infecting as many as 1 million computers per day with several banking trojans. A new massive AdGholas malvertising network discovered by experts at Proofpoint has been infecting as many as 1 million computers per day with several banking trojans. AdGholas operators have been active
Publish At:2017-07-04 19:20 | Read:2828 | Comments:0 | Tags:Breaking News AdGholas Angler EK Cybercrime malvertising mal

AdGholas Malvertising Campaign Employs Astrum Exploit Kit

At the end of April this year, we found Astrum exploit kit employing Diffie-Hellman key exchange to prevent monitoring tools and researchers from replaying their traffic. As AdGholas started to push the exploit, we saw another evolution: Astrum using HTTPS to further obscure their malicious traffic. We spotted a new AdGholas malvertising campaign using the A
Publish At:2017-06-20 11:50 | Read:7247 | Comments:0 | Tags:Bad Sites Ransomware AdGholas Astrum exploit kit malvertisin

Malvertising campaign in Google Search redirected users to tech support scam

Malicious ads in Google search results for the US retail giant Target redirected users to a tech support scam. The malvertising campaign was first reported last week by a US user who posted his observations to a StackExchange thread and was then reported by Bleepingcomputer.com. Just querying Google for the term “target,” users were displayed on
Publish At:2017-06-06 09:55 | Read:3857 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cybercrime Google malverti

GootKit Malvertising Brings Redirection Attacks to Italian Banks

Earlier in May, I reported that GootKit had launched redirection attacks for the first time. The malware prepared for its new modus operandi in the U.K., targeting major banks there with this advanced browsing manipulation attack. I also predicted that this was just a test and that we’re about to see more. That prediction has come true. GootKit officia
Publish At:2017-05-24 00:45 | Read:4547 | Comments:0 | Tags:Banking & Financial Services Fraud Protection Malware Threat

The HP EliteBook is Shipping – You Are Free to Safely Browse the Internet

As we announced in February, HP Sure Click begins shipping on the new HP EliteBook x360 starting today. This beauty not only has a secure BIOS but also offers secure browsing – security built-in, not bolted-on. With this launch, virtualization-based security goes completely mainstream, direct to the prosumer. We are so pleased to share the news that
Publish At:2017-04-18 20:30 | Read:4383 | Comments:0 | Tags:Company News End Users browsing Chrome Edge EliteBook x360 H

CVE-2017-0022 Windows Zero-Day flaw used by AdGholas hackers and it was included in Neutrino EK

The recently patched CVE-2017-0022 Windows Zero-Day vulnerability has been exploited by threat actors behind the AdGholas malvertising campaign and Neutrino EK since July 2016. Microsoft has fixed several security flaws with the March 2017 Patch Tuesday updates. According to security experts at Trend Micro, the list of fixed vulnerabilities includes three fl
Publish At:2017-03-26 01:15 | Read:4276 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware AdGholas CVE-2017-

Malicious Chrome Extension Punishes Users with Tech Support Scam

A malicious Google Chrome extension punishes users who search for certain keywords by redirecting them to a tech support scam.Attackers introduce users to the rogue extension via a malvertising campaign. Most of the time, malicious adverts redirect users to an exploit kit that installs ransomware or other baddies. In this case, the advertisement leads a user
Publish At:2017-02-23 14:05 | Read:4023 | Comments:0 | Tags:Latest Security News Chrome Malvertising scam

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud