A post by Ian Beer of Google Project Zero released late yesterday evening sent the security community reeling. According to Beer,…
Month: August 2019
Making the case: How to get the board to invest in higher education cybersecurity
Security leaders in institutions of higher education face unique challenges, as they are charged with keeping data and the network secure,…
Study explores clickjacking problem across top Alexa-ranked websites
Clickjacking has been around for a long time, working hand-in-hand with the unwitting person doing the clicking to send them to…
Nextdoor neighborhood app sends letters on its users’ behalf
Dutch police departments and consumer organizations issued warnings about the use of the Nextdoor neighborhood app because people received letters (yes,…
Mobile Menace Monday: Android Trojan raises xHelper
Back in May, we classified what we believed was just another generic Android/Trojan.Dropper, and moved on. We didn’t give this particular…
A week in security (August 19 – 25)
Last week on Malwarebytes Labs, we reported on the presence of Magecart on a type of poker software; outlined how the…
Ransomware continues assault against cities and businesses
Ransomware continues to make waves in the US, forcing multiple cities and organizations into tough choices. Pressed for cash and time,…
The lucrative business of Bitcoin sextortion scams (updated)
Update (2019-09-04): A new wave of sextortion emails purporting to have originated from a group of hackers called ChaosCC—a play on…
Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks
Those who are familiar with Bluetooth BR/EDR technology (aka Bluetooth Classic, from 1.0 to 5.1) can attest that it is not…
Magecart criminals caught stealing with their poker face on
Earlier in June, we documented how Magecart credit card skimmers were found on Amazon S3. This was an interesting development, since…