Ransomware: March 2022 review
Get the latest information on ransomware trends with our monthly review.
The post Ransomware: March 2022 review appeared first on Malwarebytes Labs.
Get the latest information on ransomware trends with our monthly review.
The post Ransomware: March 2022 review appeared first on Malwarebytes Labs.
We discovered an interesting trick used by Colibri Loader to survive reboots that takes advantage of a legitimate command in PowerShell.
The post Colibri Loader combines Task Scheduler and PowerShell in clever persistence technique appeared first on Malwarebytes Labs.
In late March, the cyber espionage group UNC2589 also known as SaintBear launched a spear phishing campaign targeting several entities in Ukraine. In this blog we review this attack and the intended payloads.
The post New UAC-0056 activity: There’s a Go Elephant in the room appeared first on Malwarebytes Labs.
We’ve identified a new campaign using a combination of exploits, malicious macros and other lures that is targeted at Russian individuals who may have violated restrictions imposed by the Russian government.
The post New spear phishing campaign targets Russian dissidents appeared first on Malwarebytes Labs.
We review two of the latest wipers that have targeted Ukraine recently.
The post Double header: IsaacWiper and CaddyWiper appeared first on Malwarebytes Labs.
We review two of the latest wipers that have targeted Ukraine recently.
The post Double header: IsaacWiper and CaddyWiper appeared first on Malwarebytes Labs.
Rate limiting can slow a determined password guessing attack to a crawl, giving defenders months of extra time to respond.
The post Blunting RDP brute-force attacks with rate limiting appeared first on Malwarebytes Labs.
Get the latest information on ransomware trends with our monthly review.
The post Ransomware: February 2022 review appeared first on Malwarebytes Labs.
A new malspam campaing is delivering Formbook to Ukrainian citizens, targeting them with a lure of government funds.
The post FormBook spam campaign targets citizens of Ukraine️ appeared first on Malwarebytes Labs.
A new Formbook campaign is targeting oil and gas companies.
The post Beware of malware offering “Warm greetings from Saudi Aramco” appeared first on Malwarebytes Labs.