It was never a question of “if” but “when”. After five months of absence, the dreaded Emotet has returned. Following several…
Month: July 2020
Coordinated Twitter attack rakes in 100 grand
[Update 7/18/2020 Twitter released an update about the situation and their investigation on their blog.] [Update 8/2/2020 ZDNet published a timeline…
Website misconfigurations and other errors to avoid
Website owners, listen up: There are lots of things you shouldn’t do with your site, and many more you should avoid…
Stalkerware advertising ban by Google a welcome, if incomplete, step
On Friday, July 10, Google announced it would no longer allow advertising for spyware and similar surveillance technology—often referred to as…
A week in security (July 6 – 12)
Last week on Malwarebytes Labs, we took an in-depth look at card skimmers targeting ASP sites, we released another episode of…
Threat spotlight: WastedLocker, customized ransomware
WastedLocker is a new ransomware operated by a malware exploitation gang commonly known as the Evil Corp gang. The same gang…
We found yet another phone with pre-installed malware via the Lifeline Assistance program
We have discovered, yet again, another phone model with pre-installed malware provided from the Lifeline Assistance program via Assurance Wireless by…
Mac ThiefQuest malware may not be ransomware after all
Editor’s note: The original name for the malware, EvilQuest, has been changed due to a legitimate game of the same name…
Lock and Code S1Ep10: Pulling apart the Internet of Things with JP Taggart
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet….
Credit card skimmer targets ASP.NET sites
Update: 2020-07-09 A reader contacted us with information about this series of attacks on .NET sites. There is a known vulnerability…