Through its usual means of communication, its Telegram channel, the LAPSUS$ group has posted screenshots of what appears to be superuser…
Month: March 2022
Facebook users wary of security mail find themselves locked out of accounts
It’s not unusual for sites and services to offer additional forms of protection on top of regular security features. Some of…
A new rootkit comes to an ATM near you
It’s not unusual to hear about malware created to affect automated teller machines (ATMs). Malware can be plantedat the ATM’s PC…
A week in security (March 14 – 20)
Last week on Malwarebytes Labs: Stay safe!
AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI
The FBI has issued anadvisoryabout the AvosLocker ransomware. Notably the FBI has noticed that several victims have reported Microsoft Exchange Server vulnerabilities…
Facebook phish claims “Someone tried to log into your account”
Watch out for bogus Facebook phishing messages winging their way to your mailbox. The ruse is quite simple: The mail senders…
Fake Esports voting sites looking to phish Steam users
We’ve seen Esports occasionally become the focus of gaming or Steam scams. One particular tactic of note was to claim joining…
Online Safety Bill’s provisions for “legal but harmful” content described as “censor’s charter”
The UK’s Online Safety Bill, a landmark piece of legislation that that aims to regulate the country’s online content, has just…
Meet Exotic Lily, access broker for ransomware and other malware peddlers
The Google Threat Analysis Group (TAG) has shared their observations about a group of cybercriminals called Exotic Lily. This group has…
Double header: IsaacWiper and CaddyWiper
As war in Ukraine rages, new destructive malware continues to be discovered. In this short blog post, we will review IsaacWiper…