Researchers at Cluster25 have published research about exploit code that’s triggered when a user moves their mouse over a link in…
Tag: powershell
Forced Chrome extensions get removed, keep reappearing
In the continued saga of annoying search extensions we have a new end-of-level boss. Victims have been reporting browser extensions that…
A week in security (June 20 – June 26)
Last week on Malwarebytes Labs: Stay safe!
A week in security (Nov 8 – Nov 14)
Last week on Malwarebytes Labs On Malwarebytes’ Lock and Code podcast episode S02E21 of this week we talked to Jess Dodson…
A week in security (January 14 – 20)
Last week on the Malwarebytes Labs blog, we took a look at how the government shutdown is influencing cybersecurity jobs, Advanced Persistent…
Improved Fallout EK comes back after short hiatus
[Edit 2019-01-24] Fallout EK introduces a new dropper to facilitate the final payload retrieval. This update replaces the plain MZ we…
New ‘Under the Radar’ report examines modern threats and future technologies
As if you haven’t heard it enough from us, the threat landscape is changing. It’s always changing, and usually not for…
What’s new in TrickBot? Deobfuscating elements
Trojan.TrickBot has been present in the threat landscape from quite a while. We wrote about its first version in October 2016….
Fileless malware: getting the lowdown on this insidious threat
Traditionally, malware attacks as we have always known them are files written to disk in one form or another that require…
Malware analysis: decoding Emotet, part 2
In part two of our series on decoding Emotet, (you can catch up on part 1 here), we’ll cover analysis of…