April 10, 2015 | BY
During our malware investigations, we are often learning about new techniques or ways the bad guys try to bypass us. But sometimes, we also experience cultural differences or discover some new things about people or countries. Today is such as case, with a bit of a geography lesson brought to us by the RIG exploit kit which takes us to Croatia.
April 3, 2015 | BY
As of last night, Malwarebytes started detecting a very popular and very vulnerable application as a PUP. This application, known as Dell System Detect, is pre-installed with many Dell systems. According to research done by Tom Forbes, older versions of Dell System Detect are vulnerable to a serious remote code execution attack.
April 1, 2015 | BY
Malwarebytes Anti-Exploit 1.06.1.1018 is out with great new features! New blocking techniques, advanced configuration settings and brand new alert message, are among the added features.
April 1, 2015 | BY
This Pirate Bay clone is actively pushing the Nuclear exploit kit with an iframe and will infect vulnerable visitors via drive-by download attacks. We’ve also detected several WordPress sites injected with the same iframe.
March 25, 2015 | BY
Our systems have detected infections coming from popular adult site Xtube. This attack does not use malicious ads (malvertising) to compromise users. Instead, it injects a malicious snippet of code directly into Xtube itself.
March 24, 2015 | BY
The lesser known and stealthy Hanjuan Exploit Kit, which for almost two months was using a Flash Player zero-day (CVE-2015-0313) to infect unsuspecting users, has been quite active again during the past couple of weeks. The current malvertising campaign stems from the Engage:BDR ad network.
March 19, 2015 | BY
A recently patched vulnerability (CVE-2015-0336) for the Flash Player is being exploited in the wild to distribute malware.
March 13, 2015 | BY
Popular Chef Jamie Oliver is still serving… malware through his website. This is the second case within a month so foodies should be careful before looking up their favourite recipe.
February 26, 2015 | BY
A clever way to hide malicious code on a site would be to put it somewhere someone would least expect it, like on a page that says that the site has been suspended.
February 18, 2015 | BY
Popular adult site RedTube.com currently has a malicious iFrame loaded on their site, redirecting users to malicious pages. Resulting in a trusted site with high notoriety and non-malicious reputation can potentially infect millions with all kinds of heinous malware.
February 17, 2015 | BY
This is not the recipe you were looking for: Exploit happens when visiting Jamie Oliver’s official website.
February 3, 2015 | BY
A new Adobe Flash zero-day, the third one this year so far, has been found in the wild via drive-by download attacks. Malwarebytes Anti-Exploit has blocked this exploit since December 2014.
January 27, 2015 | BY
Top adult site xHamster is currently involved in a very large malvertising campaign spreading the Bedep Trojan.
January 21, 2015 | BY
Security researcher Kafeine has discovered a Zero-Day in Adobe Flash Player distributed through the Angler Exploit Kit. Users of Malwarebytes Anti-Exploit are protected.
January 21, 2015 | BY
Did you know that 2/3 of all new malware is distributed by Exploit Kits via websites that you trust?
November 17, 2014 | BY
Patch Tuesday brings a slew of updates for your version of Windows, however one vulnerability in particular has been on the minds of users, maintainer and protectors for days. What is this vulnerability, how can it be used against you and what do you need to do to make sure it isn’t a problem in the future?
November 6, 2014 | BY
For a tech support company that is supposed to fix computers, performing a drive-by download infection (thankfully blocked by Malwarebytes Anti-Exploit) is not a good sign.
October 29, 2014 | BY
A clever use of the same Flash-based redirection script ties similar website compromises together.
October 22, 2014 | BY
It should be emphasized that patches ought to be applied in a timely fashion. Case in point: criminal took advantage of this critical flash player vulnerability in record time.
September 27, 2014 | BY
The Pirate Bay is famous for its tumultuous relationship with copyright advocates and law enforcement. And yet, despite police raids and numerous trials, the torrent site is still going strong with a new infrastructure, as detailed in a recent article published by Torrent Freak. From a security standpoint, The Pirate Bay has been involved in notorious malvertising attacks, […]