Monthly Archives: February 2018

New RIG malvertising campaign uses cryptocurrency theme as decoy

For a couple of weeks, we have been observing a malvertising campaign that uses decoy websites to redirect users to the RIG exploit kit. Those sites, whose theme is about cryptocurrencies, were all registered recently and are swapped after a … Continue reading

Posted in Antivirus | Comments Off on New RIG malvertising campaign uses cryptocurrency theme as decoy

Encryption 101: ShiOne ransomware case study

In part one of this series, Encryption 101: a malware analyst’s primer, we introduced some of the basic encryption concepts used in malware. If you haven’t read it, we suggest going back for a review, as it’s necessary in order … Continue reading

Posted in Antivirus | Comments Off on Encryption 101: ShiOne ransomware case study

IoT hack: how to break a smart home… again

There can never be too many IoT gadgets – that’s what people usually think when buying yet another connected device with advanced functionality. From our perspective, we also think there can’t be too many IoT investigations. So, we have continued … Continue reading

Posted in Antivirus | Comments Off on IoT hack: how to break a smart home… again

Human Factor Podcast: Jenny Radcliffe and Chris Boyd

A little while ago, I was invited to take part in Jenny Radcliffe’s Human Factor Podcast. With 44 episodes strong (and counting!), Jenny spends an hour or so talking at length with her guests who are professional investigators, security advocates, … Continue reading

Posted in Antivirus | Comments Off on Human Factor Podcast: Jenny Radcliffe and Chris Boyd

How to protect your computer from malicious cryptomining

Noticing that your computer is running slow? While sometimes a telltale sign of infection, these days that seems doubly true. And the reason is: malicious cryptomining. So, what, exactly, is it? We’ll tell you how bad this latest malware phenomenon … Continue reading

Posted in Antivirus | Comments Off on How to protect your computer from malicious cryptomining

A week in security (February 19 – February 25)

Last week on Malwarebytes Labs, we gave readers a primer on encryption, took a stab at that Deepfakes tool Internet users seem to be interested in, and started a new series that talks about GDPR. We also looked at a drive-by download … Continue reading

Posted in Antivirus | Comments Off on A week in security (February 19 – February 25)

The state of malicious cryptomining

While cryptocurrencies have been around for a long time and used for legitimate purposes, online criminals have certainly tarnished their reputation. Unfortunately, the same benefits offered by these decentralized and somewhat anonymous digital currencies were quickly abused to extort money, … Continue reading

Posted in Antivirus | Comments Off on The state of malicious cryptomining

Avzhan DDoS bot dropped by Chinese drive-by attack

The Avzhan DDoS bot has been known since 2010, but recently we saw it in wild again, being dropped by a Chinese drive-by attack. In this post, we’ll take a deep dive into its functionality and compare the sample we … Continue reading

Posted in Antivirus | Comments Off on Avzhan DDoS bot dropped by Chinese drive-by attack

Deepfakes FakeApp tool (briefly) includes cryptominer

A few weeks ago, we took a look at a forum dedicated to Deepfake clips where the site was pushing Coinhive mining scripts in the website’s HTML code. As it turns out, there’s been another mining blow-out in the form … Continue reading

Posted in Antivirus | Comments Off on Deepfakes FakeApp tool (briefly) includes cryptominer

Tax refund, or How to lose your remaining cash

Every year, vast numbers of people around the globe relish the delightful prospect of filling out tax returns, applying for tax refunds, etc. Given that tax authorities and their taxpayers are moving online, it’s no surprise to find cybercriminals hard … Continue reading

Posted in Antivirus | Comments Off on Tax refund, or How to lose your remaining cash