Categories

Posts by Jérôme Segura

I'm Senior Security Researcher at Malwarebytes where I investigate and uncover various threats and scams. In my spare time, I enjoy tasting some good wines and cheeses. Follow me @jeromesegura.

“Buy $500 antivirus from us,” say cyber-criminals

You’ve paid the ransom. Then you paid them to purge your ‘criminal records’, but cyber crooks are now bullying you to buy a $500 antivirus.

Malwarebytes finds an exploit in the Brazilian forum for TeamSpeak, a popular software among avid video game players.

Stuxnet: new light through old windows

A lesser known (and almost bypassed) version of Stuxnet shines new light on its attackers intentions and cyber arm capabilities.

Hackers tampered with the popular forum software vBulletin and access customers data, like passwords. Rumours of zero day within the vBulletin software emerges.

An in-the-wild exploit targets Silverlight, a web plugin used by popular sites such as Netflix.

Back in July 2013, we had discovered a new method of spreading the infamous FBI ransomware by using JavaScript code and iframes to create an illusion that the victim’s browser was locked. After several months, the threat is still very much alive hopping from one domain name to the next. The message is still the same and […]

A lesser known aspect of the popular cloud storage Google Drive is its built-in site publishing feature that allows you to upload an entire directory containing static web files (HTML, JavaScript, CSS, etc.) and to publish your own website. Bad guys are uploading malicious scripts and using them as part of a well thought chain […]

[Update]: Microsoft has announced it will issue a patch for the newly discovered IE zero day tomorrow as part of the November Patch Tuesday. The vulnerability, now labeled CVE-2013-3918 affects an ActiveX control in Internet Explorer. More details can be found on Microsoft’s website. Last week we heard about a Windows zero day that allows attackers […]

The criminals behind CryptoLocker that encrypts all your personal files are now offering a late payment option, albeit at a higher cost.

If you’re still looking for that last-minute costume, careful where you shop as drive-by download can happen while browsing a Halloween online store.

World’s first Bitcoin ATM comes to Canada

Bitcoin, the famous digital currency which has sparked much controversy over the years, is now heading to an ATM near you. The world’s first Bitcoin ATM is set to open today in Vancouver.

Google to provide website protection services against Distributed Denial of Service attacks mitigation and other types of attacks aimed at blocking politically sensitive websites.

Windows XP’s retirement: Google takes a poke at it

We’ve known for a while now about Microsoft’s decision to retire the very popular Windows XP operating system next year, but here comes Google to XP users rescue?

Tech Support Scams: Coming to a Mac near you

When fake tech support come calling, the excuse of running a Mac typically elicits a hang up from the scammers. But it looks like that might not work anymore as they are ready to scam Mac users too.

A few hours ago, a tweet from Maarten Boone, a security researcher at Fox-IT, a Dutch security firm reports that Blackhole exploit kit author Paunch and partners were arrested in Russia.

Is John McAfee making a comeback in the security industry?

He certainly is eccentric, but software pioneer John McAfee could be making a comeback in the security field with the announcement of his new company Future Tense.

Click2Play exploit paired with CVE-2013-2460 guarantees the highest infection rates for anyone running Java 7 update 21 or earlier. But not if you have Malwarebytes Anti-Exploit.

iOS7 and iPhone 5s in the news, but for the wrong reasons

Apple’s release of iOS7 and the new iPhones are making headlines all over this past week, but for the wrong reasons.

Uncovering an Android botnet involved in SMS fraud

Learn more about a SMS fraud network that is particularly active in Eastern Europe and involves trojanized apps luring users with the usual culprits: fake software updates and porn.

Apple announced today their brand new iPhone to the world. Meanwhile, the bad guys seem to be more interested in robbing Apple users than rejoicing about the big news of the iPhone 5S.

« Previous PageNext Page »

Subscribe to our YouTube Channel