Last year, we documented a new social engineering toolkit we called “Domen” being used in the wild. Threat actors were using…
Tag: JavaScript
Magecart Group 4: A link with Cobalt Group?
Note: This blog post is a collaboration between the Malwarebytes and HYAS Threat Intelligence teams. Magecart is a term that has…
Magecart criminals caught stealing with their poker face on
Earlier in June, we documented how Magecart credit card skimmers were found on Amazon S3. This was an interesting development, since…
A week in security (June 24 – 30)
Last week on Malwarebytes Labs, we peeled back the mystery on an elusive malware campaign that relied on blank JavaScript injections,…
Google logins: JavaScript now required
Google users: In news that may sound alarming, it is now a requirement for you to enable JavaScript. Why? When your…
Mass WordPress compromises redirect to tech support scams
Content Management Systems (CMSes) such as WordPress, Drupal, or Joomla are under a constant barrage of fire. Earlier this year, we…
Explained: regular expression (regex)
Regular expression, or “regex” for short, is a mathematical term for the theory used to describe regular languages. But in computing, regexes…
USPS-themed malspam now delivering 1-2-3 knock-out
We’ve detected an uptick in USPS-themed malspam walloping users with a 1-2-3 knock-out of nasty malware designed to infiltrate your system…
Fake pharma sites are getting even more obnoxious
Recently, we have noticed that fake pharma sites seem to have discovered the use of JavaScript to change the “Stay or…
Advanced phishing tactics used to steal PayPal credentials
Phishers are back to using an old tactic in a new fashion to get hold of their victims’ credentials. One of…