A cyberattack is not the same thing as malware—in fact, malware itself is typically the last stage of an attack, the…
Tag: rdp
A week in security (March 14 – 20)
Last week on Malwarebytes Labs: Stay safe!
A week in security (March 7 – March 13)
Last week on Malwarebytes Labs: Stay safe!
Blunting RDP brute-force attacks with rate limiting
Thanks to the Malwarebytes Threat Intelligence Team for the information they provided for this article. Not long ago, guessing a Windows…
Password usage analysis of brute force attacks on honeypot servers
As Microsoft’s Head of Deception, Ross Bevington is responsible for setting up and maintaining honeypots that look like legitimate systems and servers….
Threat profile: Ranzy Locker ransomware
Ranzy Locker ransomware emerged in late 2020, when the variant began to target victims in the United States. According to a flash alert issued by the FBI,…
LemonDuck no longer settles for breadcrumbs
LemonDuck has evolved from a Monero cryptominer into LemonCat, a Trojan that specializes in backdoor installation, credential and data theft, and…
Royal Mail phish deploys evasion tricks to avoid analysis
Royal Mail phish scams are still in circulation, slowly upgrading their capabilities with evasion tools deployed in far more sophisticated malware…
Avaddon ransomware campaign prompts warnings from FBI, ACSC
Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing…
Perkiler malware turns to SMB brute force to spread
Researchers at Guardicore have identified a new infection vector being used by the Perkiler malware where internet-facing Windows machines are breached…