Monthly Archives: October 2017

Analyzing malware by API calls

Over the last quarter, we’ve seen an increase in malware using packers, crypters, and protectors—all methods used to obfuscate malicious code from systems or programs attempting to identify it. These packers make it very hard, or next to impossible to … Continue reading

Posted in Antivirus | Comments Off on Analyzing malware by API calls

Gaza Cybergang – updated activity in 2017:

1. Summary information The Gaza cybergang is an Arabic-language, politically-motivated cybercriminal group, operating since 2012 and actively targeting the MENA (Middle East North Africa) region. The Gaza cybergang’s attacks have never slowed down and its typical targets include government entities/embassies, … Continue reading

Posted in Antivirus | Comments Off on Gaza Cybergang – updated activity in 2017:

Know your threats: the nine scariest malware monsters

It’s been a particularly ghoulish year in cybersecurity, from Russian hacks to ransomware outbreaks. The bad boogey man in the black hoodie has been pulling one over the collective public. It’s dark and creepy, but users refuse to stop peeking … Continue reading

Posted in Antivirus | Comments Off on Know your threats: the nine scariest malware monsters

A week in security (October 23 – October 29)

Welcome back to “A week in security.” Last week, we took a look at how deleted files can be recovered, explored the BadRabbit ransomware plague attacking Eastern Europe (including a deep dive into the code), and talked about what it … Continue reading

Posted in Antivirus | Comments Off on A week in security (October 23 – October 29)

Traditional AV solutions shown ineffective in real-time global heat map

It’s no secret that antivirus technology (AV) has faced increased scrutiny in the tech industry for quite some time. With signature-based detection methods, traditional AV solutions are simply weak against unknown malware and other malicious content. Meanwhile, consumers and businesses … Continue reading

Posted in Antivirus | Comments Off on Traditional AV solutions shown ineffective in real-time global heat map

Analyzing an exploit for СVE-2017-11826

The latest Patch Tuesday (17 October) brought patches for 62 vulnerabilities, including one that fixed СVE-2017-11826 – a critical zero-day vulnerability used to launch targeted attacks – in all versions of Microsoft Office. The exploit for this vulnerability is an … Continue reading

Posted in Antivirus | Comments Off on Analyzing an exploit for СVE-2017-11826

Please don’t buy this: smart locks

We all like buying the latest and greatest tech toy. It’s fun to get new and novel features on a product that used to be boring and predictable; a draw of the original BeBox (amongst many) was a layer of … Continue reading

Posted in Antivirus | Comments Off on Please don’t buy this: smart locks

Our computers, ourselves: digital vs. biological security

Though by night I fight malware alongside the rest of the Malwarebytes research team, by day I work as a doctoral student in Immunobiology at Yale University, where I study the development of the immune system in your bone marrow. … Continue reading

Posted in Antivirus | Comments Off on Our computers, ourselves: digital vs. biological security

When cybersecurity isn’t all cyber: What does it really take to work in cybersecurity?

With the multitude of breaches and outbreaks already witnessed in 2017, it’s become clear that industries across all verticals are challenged by cybersecurity. This is a serious business problem that needs to be addressed ASAP. As much talk as there … Continue reading

Posted in Antivirus | Comments Off on When cybersecurity isn’t all cyber: What does it really take to work in cybersecurity?

Bad Rabbit ransomware

What happened? On October 24th we observed notifications of mass attacks with ransomware called Bad Rabbit. It has been targeting organizations and consumers, mostly in Russia but there have also been reports of victims in Ukraine. Here’s what a ransom … Continue reading

Posted in Antivirus | Comments Off on Bad Rabbit ransomware