Tag: Exploit Kits
-
Patch Against Exploit Kits. Understanding How Threat Actors Target Your Defenses
Exploit kits (Eks) are collections of exploits – pieces of code or sequences of commands – created to leverage vulnerabilities in …
-
IT threat evolution Q3 2020
MATA framework, Garmin attack, Operation PowerFall, DeathStalker group and other events of …
-
IT threat evolution Q2 2020
Targeted attacks and APT groups, new malware and the COVID-19 pandemic exploitation in the second quarter of …
-
Purple Fox EK Adds Microsoft Exploits to Arsenal
The Purple Fox exploit kit (EK) has added two new exploits targeting critical- and high-severity Microsoft vulnerabilities to its bag of …
-
Magnitude exploit kit – evolution
Exploit kits still play a role in today’s threat landscape and continue to evolve. For this blogpost I studied and analyzed the evolution …
-
Navigating the MAZE: Tactics, Techniques and Procedures Associated With MAZE Ransomware Incidents
Targeted ransomware incidents have brought a threat of disruptive and destructive attacks to organizations across industries and …
-
Copycat criminals abuse Malwarebytes brand in malvertising campaign
While exploit kit activity has been fairly quiet for some time now, we recently discovered a threat actor creating a …
-
Hackers Created Thousands of Coronavirus (COVID-19) Related Sites As Bait
As the world comes to grips with the coronavirus pandemic, the situation has proven to be a blessing in disguise for threat actors, who’ve …
-
Spelevo exploit kit debuts new social engineering trick
2019 has been a busy year for exploit kits, despite the fact that they haven’t been considered a potent threat vector for years, …
-
A week in security (November 18 – 24)
Last week on Malwarebytes Labs, we looked at stalkerware’s legal enforcement problem, announced our cooperation with other security …
-
Exploit kits: fall 2019 review
Despite a slim browser market share, Internet Explorer is still being exploited in fall 2019 in a number of drive-by download campaigns. …
-
Pulse VPN patched their vulnerability, but businesses are trailing behind
In April 2019, Pulse Secure published an advisory about a vulnerability in their software. In August, cybercriminals were massively …
●●●