Search

By Marcos ColonIt's no secret that the threat landscape provides as many twists and turns as an M. Night Shyamalan flick, with new tactics and malware variants cropping up on a seemingly daily basis. With the enormous task of measurably reducing cyber risk within the business, security practitioners...

Although there's been a drop in the activity of exploit kits (EK), threat actors have adapted by redirecting unwitting victims to exploit kit servers, according to a post on the Symantec blog.As outlined by Siddhesh Chandrayan, an associate threat analysis engineer at Symantec, with the shutdown of ...

A new report from SentinelOne has documented the rise of in-memory attacks. The evasive, fileless tactics are apparently eluding antivirus systems.SentinelOne's most recent Enterprise Risk Index catalogues threats that presented themselves in the second half of 2016. Unlike many other reports, the I...

Exploit kits didn't completely hibernate over the winter, but they didn't show much signs of life either, with no major changes to their features and a relatively low infection volume compared to malicious spam, according to Malwarebytes.In its Winter 2017 review of exploit kit activity, the company...

The pseudo-Darkleech campaign has been very adaptive over that past twelve months cycling through three different Exploit Kits (EKs) and five different ransomware payloads since this time last year.Palo Alto Networks Unit 42 researchers said this underscores the campaign continues to stick with rans...

Cyber criminals have long preferred automated infections (as opposed to social engineering) because they can tap into a much wider market. For that, exploit kits represent the most popular way to seamlessly infect a computer with ‘drive-by download' attacks via malvertising or compromised websites.I...

Malwarebytes researchers spotted a large malvertising campaign delivering the RIG exploit kit on popular sites, including answers(dot)com, and using a few tricks from its rival, Neutrino.Over the last few weeks, RIG has been spotted dropping CrypMIC, a ransomware that Neutrino first served in July a...

The Sundown Exploit Kit (EK) has been caught thieving other thieves' property.Often considered to be of little interest by those on the frontline, Sundown's developers have started to get their act together.  Researchers at Trustwave detailed the EK's practice of stealing other kits' exploits a...

The first five months of 2016 were dominated by malicious email campaigns, the quick emergence of new ransomware variants, one of the largest botnets in the world went dark, and the Angler exploit kit (EK) went silent—all leading to a strangely quiet June.  Proofpoint has published its quarterl...

For the first time ever, CryptXXX ransomware is being distributed via malicious document attachments in email campaigns.Proofpoint researchers said the malware was initially spread via the Angler and Neutrino exploit kits (EKs), but in the wake of Angler's disappearance the threat actors normal...