Categories

Posts by Jérôme Segura

I'm Senior Security Researcher at Malwarebytes where I investigate and uncover various threats and scams. In my spare time, I enjoy tasting some good wines and cheeses. Follow me @jeromesegura.

The infamous Netflix scam resurfaces again along with a AOL, Comcast, CenturyLink, etc phishing pages urging the user to call a 1-800 number.

The Tax Season Tech Support Scam

Fake tech support scammers are now going after people needing help filling their taxes.

Popular adult site beeg[dot]com pushes malware

Popular adult website serving up drive-by download and redirects to an exploit kit.

CanSecWest day 3 Recap

Recap of the third and final day of the CanSecWest conference.

CanSecWest: Day 1 Recap

Malwarebytes is in attendance at the annual CanSecWest conference that began on a sunny day in beautiful (but often rainy) Vancouver, British Columbia.

This isn’t just a a phishing scam targeting Netflix users. A fake notice about your account being suspended leads to a full blown tech support scam.

A security flaw affecting certain versions of iOS and OS X devices lets others eavesdrop on all your HTTPS encrypted traffic.

Adobe Flash Player Zero-Day: details and mitigation

A new vulnerability in Adobe’s Flash Player found.

A new variant of the Zeus/Zbot trojan, dubbed ZeusVM, is using images as a decoy to retrieve its configuration file, and waits to steal banking info.

A new zero-day discovered in Internet Explorer 10 and was used in targeted attacks.

Tech support scams: Show me the money

What misleading tactics or straight out lies do these tech scammers perform once you pay the fee?

Aggressive online ads are redirecting mobile users to App Store or Play Store download page.

Localized malvertising affects some OpenDNS users

Popular DNS resolution service OpenDNS was targeted for a malvertising attack affecting a certain percentage of its user base.

Tech support scammers target smartphone and tablet users

Fake tech support scammers are now targeting smartphone and tablet users using traditional cold calling and online advertising.

Hard times on The Moscow Times

A reported malware alert for The Moscow Times turned out to be just that after the newspaper told readers to bypass the “fake warning”.

A Tumblr of trouble

Tumblr is a hot spot for malware infections, spam and other security issues. But this one disguises itself as a legitimate JavaScript.

Updated browser-based ransomware uses more advance payment process and also now abuses CloudFlare.

Malvertising and the joys of online advertising

Holiday shopping is stressful enough, now we need to worry about the rise of malvertising?

Tech support scammers spam YouTube with robot-like warnings for antivirus/antimalware users.

Bad Timing: French Gov’t and Online Surveillance

Google caught several fake digital certificates spoofing its domains tracing back to the ANSSI, a French cyber-division.

Next Page »

Subscribe to our YouTube Channel