Virus / Malware

Retour à Sécurité

Malwarebytes

    • Lock and Code S1Ep3: Dishing on data privacy with Adam Kujawa 30 mars 2020
      This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Adam Kujawa, a director of Malwarebytes Labs, about the state of data privacy today, including how users and businesses can protect sensitive information when there are few laws to help them out, and whether we could foresee the many problems with today …

    • Coronavirus Bitcoin scam promises “millions” working from home 26 mars 2020
      In the last week, we’ve seen multiple coronavirus scams pushed by bad actors, including RAT attacks via fake health advisories, bogus e-books working in tandem with Trojans, and lots of other phishing shenanigans. Now we have another one to add to the ever-growing list: dubious coronavirus Bitcoin missives landing in your inbox. Reworking a classic spam tactic This is a retooling of an older spam …

    • Consumerization: a better way to answer cybersecurity challenges 25 mars 2020
      A version of this article originally appeared in Forbes on February 12, 2020. Consumerization: The specific impact that consumer-originated technologies can have on enterprises. Gartner More and more, enterprises are coming to understand that they need to adopt the agile processes and product strategies of startups in order to compete in today’s markets. But there is a parallel problem in ent …

    • Criminals hack Tupperware website with credit card skimmer 25 mars 2020
      Update (2): A spokesperson for Tupperware has given a public statement to Alex Scroxton, Security Editor at ComputerWeekly. You can read it here. Update: Following our blog post, we continued to monitor the Tupperware website. As of 03/25 at 1:45 PM PT, we noticed that the malicious PNG file had been removed, followed later by the JavaScript that was present on the homepage. On March 20, Malwareby …

    • Windows 7 is EOL: What next? 24 mars 2020
      End-of-life (EOL) is an expression commonly used by software vendors to indicate that a product or version of a product has reached the end of usefulness in the eyes of the vendor. Many companies, including Microsoft, announce the EOL dates for their products far in advance. Every Windows product has a lifecycle. The lifecycle begins when a product is released and ends when it’s no longer su …

    • Fake “Corona Antivirus” distributes BlackNET remote administration tool 23 mars 2020
      Scammers and malware authors are taking advantage of the coronavirus crisis in full swing. We have seen a number of spam campaigns using COVID-19 as a lure to trick people into installing a variety of malware, but especially data stealers. As more of us work from home, the need to secure your computer, especially if you are connecting to your company’s network, becomes more important. Howeve …

    • A week in security (March 16 – 22) 23 mars 2020
      Last week on Malwarebytes Labs, we concluded our series on child identity theft. We also looked into threat actors and campaigns that ride the COVID-19 train, namely the criminal group APT36 and threat actors purporting to be the World Health Organization (WHO) but instead spreading malware. Lastly, we have tips for those who are working at home to stay secure while social distancing. Other cybers …

    • Coronavirus scams, found and explained 20 mars 2020
      Coronavirus has changed the face of the world, restricting countless individuals from dining at restaurants, working from cafes, and visiting their loved ones. But for cybercriminals, this global pandemic is expanding their horizons. In the past week, Malwarebytes discovered multiple email scams that prey on the fear, uncertainty, and confusion regarding COVID-19, the illness caused by the novel c …

    • Security tips for working from home (WFH) 19 mars 2020
      Over the last decade, remote work and working from home has grown in popularity for many professionals. In fact, a 2018 study found more than 70 percent of global employees work remotely at least once per week. However, the coronavirus pandemic and resulting lockdown in many parts of the world have forced a large number of employees into unfamiliar territory—not just remote work, but ful …

    • Cybercriminals impersonate World Health Organization to distribute fake coronavirus e-book 18 mars 2020
      The number of scams, threats, and malware campaigns taking advantage of public concern over the coronavirus is increasing each day. As a result, we’ve been actively monitoring emails within our spam honeypot to flag such threats and make sure our users are protected. Yesterday, we observed a phishing campaign similar to malspam previously discovered by MalwareHunterTeam, which impersonates t …

    • Child identity theft, part 2: How to reclaim your child’s identity 17 mars 2020
      In a world where children as young as a single day old can fall prey to fraud, it is more important than ever to educate parents and other caretakers about the dangers of child identity theft. While the hope is that perceptions can be changed and criminals brought to justice, likely the biggest concern for parents is how to reclaim their child’s identity, should they ever be in such an unfor …

    • Lock and Code S1Ep2: On the challenges of managed service providers 16 mars 2020
      This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to two representatives from an Atlanta-based managed service provider—a manager of engineering services and a data center architect—about the daily challenges of managing thousands of nodes and the future of the industry. Tune in for all this and more on the …

    • APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT 16 mars 2020
      Since the coronavirus became a worldwide health issue, the desire for more information and guidance from government and health authorities has reached a fever pitch. This is a golden opportunity for threat actors to capitalize on fear, spread misinformation, and generate mass hysteria—all while compromising victims with scams or malware campaigns. Profiting from global health concerns, natural dis …

    • The effects of climate change on cybersecurity 13 mars 2020
      Outside the coronavirus pandemic and its related healthcare and economic fallout, climate change and cybersecurity are seen by many as the two most urgent problems facing our planet now and in the near future. They are two distinct and separate problems, to be sure. There are some areas, however, where security and climate change overlap, interlock, and influence one another. Let’s have a look. To …

    • Coronavirus impacts security conferences and events: check your schedule 12 mars 2020
      With coronavirus starting to take hold globally, international travel restrictions are kicking in and more workplaces are advising to work from home whenever possible. When self-isolation is a potential solution, public gatherings are increasingly looking like a terrible idea. Events are becoming a bit of a hotspot for cases, leading to inevitably bizarre scenarios where coronavirus conferences ar …

    • RemoteSec: achieving on-prem security levels with cloud-based remote teams 12 mars 2020
      The world of work is changing—by the minute, it feels these days. With the onset of the global coronavirus pandemic, organizations around the world are scrambling to prepare their workforce, and their infrastructure, for a landslide of remote connections. This means that the security perimeter of businesses small and large has transformed practically overnight, requiring IT leaders to rethink the …

    • Securing the MSP: best practices for vetting cybersecurity vendors 11 mars 2020
      Ironically, to keep costs low for their enterprise and mid-market clients, managed service providers (MSPs) are some of the most reliant on third-party vendors—including those providing security. While this is generally not an indication of dysfunction or vulnerability, the responsible MSP will be looking with a critical eye while vetting cybersecurity vendors to evaluate how they might increase t …

    • Rocket Loader skimmer impersonates CloudFlare library in clever scheme 10 mars 2020
      Update: The digital certificate issued for https[.]ps has been revoked by GlobalSign. Fraudsters are known for using social engineering tricks to dupe their victims, often times by impersonating authority figures to instill trust. In a recent blog post, we noted how criminals behind Magecart skimmers mimicked content delivery networks in order to hide their payload. This time, we are looking at a …

    • A week in security (March 2 – 8) 9 mars 2020
      Last week on Malwarebytes Labs, we fired up part 1 of our series on child identity theft, asked how well law enforcement can deal with cybercriminals, and took a trip down the memory lane of moral panic. We also looked at the positives and negatives of VPNs and examined our own progress in the fight against stalkerware, spyware, and monitoring apps. Other cybersecurity news Trouble strikes for ope …

    • International Women’s Day: awareness of stalkerware, monitoring, and spyware apps on the rise 9 mars 2020
      Nine months ago, Malwarbytes recommitted itself to detecting invasive monitoring apps that can lead to the excessive harm of women—most commonly known as stalkerware. We pledged to raise public awareness, reach out to advocacy groups, and share samples and intelligence with other security vendors. Now, for International Women’s Day (March 8), we decided to take measure of our efforts, examining th …

ESET

    • Have you backed up your smartphone lately? 31 mars 2020
      With World Backup Day upon us, we walk you through the ways to back up your iPhone or Android phone so that your personal data remains safe The post Have you backed up your smartphone lately? appeared first on WeLiveSecurity …

    • Work from home: Videoconferencing with security in mind 30 mars 2020
      With COVID-19 concerns canceling face-to-face meetings, be aware of the security risks of videoconferencing and how to easily overcome them The post Work from home: Videoconferencing with security in mind appeared first on WeLiveSecurity …

    • Week in security with Tony Anscombe 27 mars 2020
      What COVID-19 may mean for privacy rights – Managing supply-chain risks – Two Windows zero-days remain unpatched The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …

    • 6 tips for safe and secure remote working 26 mars 2020
      Getting cybersecurity right in the work-from-home world can feel daunting. ESET Chief Security Evangelist Tony Anscombe shares 6 best practices that will steer you in the right direction. The post 6 tips for safe and secure remote working appeared first on WeLiveSecurity …

    • HPE issues fix to stop some SSDs from self‑destructing 26 mars 2020
      If left unpatched, a firmware flaw in some enterprise-class solid-state drives could make data on them unrecoverable as early as this fall The post HPE issues fix to stop some SSDs from self‑destructing appeared first on WeLiveSecurity …

    • Public health vs. personal privacy: Choose only one? 25 mars 2020
      As the world turns to technology to track and contain the COVID-19 pandemic, could this spell the end of digital privacy rights? The post Public health vs. personal privacy: Choose only one? appeared first on WeLiveSecurity …

    • Microsoft warns of two Windows zero‑day flaws 24 mars 2020
      Updates for the critical-rated vulnerabilities, which are being actively exploited in the wild, are still weeks away The post Microsoft warns of two Windows zero‑day flaws appeared first on WeLiveSecurity …

    • The good, the bad and the plain ugly 23 mars 2020
      A prolific ransomware gang vows to dial back its campaigns and spare healthcare organizations altogether during the COVID-19 crisis. It’s no cause for celebration. The post The good, the bad and the plain ugly appeared first on WeLiveSecurity …

    • Week in security with Tony Anscombe 20 mars 2020
      How to transition to a remote workforce in a safe manner – How to protect yourself from COVID-19 scams – Stantinko’s miner caught using new obfuscation techniques The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …

    • Keep calm and carry on working (remotely) 20 mars 2020
      How can employees stay motivated and productive while teleworking during the COVID-19 crisis? The post Keep calm and carry on working (remotely) appeared first on WeLiveSecurity …

    • What to do if your Twitter account has been hacked 20 mars 2020
      Losing access to your account can be stressful, but there are steps you can take to get it back – and to avoid getting hacked again The post What to do if your Twitter account has been hacked appeared first on WeLiveSecurity …

    • Security flaws found in popular password managers 19 mars 2020
      Not all they’re cracked up to be? Several password vaults contain vulnerabilities, both new and previously disclosed but never patched, a study says The post Security flaws found in popular password managers appeared first on WeLiveSecurity …

    • Work from home: Improve your security with MFA 19 mars 2020
      Remote work can be much safer with the right cyber‑hygiene practices in place – multi‑factor authentication is one of them The post Work from home: Improve your security with MFA appeared first on WeLiveSecurity …

    • Stantinko’s new cryptominer features unique obfuscation techniques 19 mars 2020
      ESET researchers bring to light unique obfuscation techniques discovered in the course of analyzing a new cryptomining module distributed by the Stantinko group’s botnet The post Stantinko’s new cryptominer features unique obfuscation techniques appeared first on WeLiveSecurity …

    • Work from home: How to set up a VPN 18 mars 2020
      As the COVID-19 pandemic has many organizations switching employees to remote work, a virtual private network is essential for countering the increased security risks The post Work from home: How to set up a VPN appeared first on WeLiveSecurity …

    • COVID‑19 and the shift to remote work 16 mars 2020
      As the pandemic forces many employees to work from home, can your organization stay productive – and safe? The post COVID‑19 and the shift to remote work appeared first on WeLiveSecurity …

    • Beware scams exploiting coronavirus fears 13 mars 2020
      From malware-laden emails to fake donations, these are some of the most common cons you should watch out for amid the public health crisis The post Beware scams exploiting coronavirus fears appeared first on WeLiveSecurity …

    • Week in security with Tony Anscombe 13 mars 2020
      ESET research into Turla’s new campaign – What is CEO fraud and how to defend against it – How Microsoft enterprise accounts get hacked The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …

ESET Support