Check your DNS! Abandoned domains used to bypass spam checks
Researchers at Guardio Labs have discovered that a group of spammers is using long-forgotten subdomains from established brands like MSN, eBay, CBS, and Marvel to…
Category: MalwareBytes
American Express warns customers about third party data breach
American Express has sent affected customers a warning that “a third party service provider engaged by numerous merchants experienced unauthorized access to its system.” In…
Pegasus spyware creator ordered to reveal code used to spy on WhatsApp users
A California federal judge has ordered spyware maker NSO Group to hand over the code for Pegasus and other spyware products that were used to…
No “Apple magic” as 11% of macOS detections last year came from malware
We’re going to let you in on a little cybersecurity secret… There’s malware on Mac computers. There pretty much always has been. As revealed in…
PikaBot malware on the rise: What organizations need to know
A new type of malware is being used by ransomware gangs in their attacks, and its name is PikaBot. A relatively new trojan that emerged…
Malicious meeting invite fix targets Mac users
Cybercriminals are targeting Mac users interested in cryptocurrency opportunities with fake calendar invites. During the attacks the criminals will send a link supposedly to add…
Airbnb scam sends you to a fake Tripadvisor site, takes your money
One of my co-workers who works on Malwarebytes’ web research team just witnessed a real life example of how useful his work is in protecting…
Facebook bug could have allowed attacker to take over accounts
A vulnerability in Facebook could have allowed an attacker to take over a Facebook account without the victim needing to click on anything at all.…
Stopping a targeted attack on a Managed Service Provider (MSP) with ThreatDown MDR
In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign against a Managed Service Provider…
ALPHV is singling out healthcare sector, say FBI and CISA
In an updated #StopRansomware security advisory, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and…
One year later, Rhadamanthys is still dropped via malvertising
It was just a little over a year ago that the Rhadamanthys stealer was first publicly seen distributed via malicious ads. Throughout 2023, we observed…
Change Healthcare outages reportedly caused by ransomware
On Wednesday February 21, 2024, Change Healthcare—a subsidiary of UnitedHealth Group—experienced serious system outages due to a cyberattack. In a Form 8-K filing the company…