We have identified a new drive-by download campaign that distributes the Princess ransomware (AKA PrincessLocker), leveraging compromised websites and the RIG…
Month: August 2017
Locky ransomware adds anti sandbox feature (updated)
By Marcelo Rivero and Jérôme Segura The Locky ransomware has been very active since its return which we documented in a…
BSides Manchester: Malvertising – under the hood
I’ve talked about malvertising a fair bit at security events down the years and I was lucky enough to be able…
Malware vaccination tricks: blue pills or red pills
First, let me explain what I mean by malware vaccination tricks. Most of you will have heard about some of these….
Inside the Kronos malware – part 2
In the previous part of the Kronos analysis, we took a look at the installation process of Kronos and explained the…
419 spam: 10 million US dollars, courtesy of “Rev. Goodluck Ebola”
I’m not saying an email claiming to be from the “Central Bank of Nigeria” with a contact handler named “Rev. Goodluck…
Mobile Menace Monday: Implications of Google Play Protect
Along with the recent release of Google’s new OS, Android 8.0 Oreo, they also released a new security suite known as…
A week in security (August 21 – August 27)
In our blog posts, we announced the introduction of, and explained the necessity for, real-time protection for our Mac and Android…
Explained: digital forensics
What is it? Digital forensics is a modern day field of forensic science, which deals with the recovery and investigation of…
Solution Corner: Malwarebytes for Mac
Mac users have been told for years: Macs don’t get viruses. Even Apple said so, in their famous Get a Mac…