Intelligence & Analytics July 28, 2023

The rise of malicious Chrome extensions targeting Latin America

9 min read - This post was made possible through the research contributions provided by Amir Gendler and Michael  Gal. In its latest research, IBM Security Lab has observed a noticeable increase in campaigns related to malicious Chrome extensions, targeting  Latin America with a…

Malware April 13, 2020

Grandoreiro Malware Now Targeting Banks in Spain

6 min read - A familiar malware threat called Grandoreiro, a remote-overlay banking Trojan that typically affects bank customers in Brazil, has spread to attack banks in Spain.

December 3, 2019

Chrome Password Stealer CStealer Uses MongoDB to Store Collected Data

2 min read - A new Google Chrome password stealer called CStealer uses a remote MongoDB database to store the data it's collected.

October 7, 2019

Weekly Security News Roundup: eGobbler Exploits Browser Bugs to Infect More Than 1 Billion Ads

3 min read - Researchers unveiled how a malvertising actor known as eGobbler exploited browser bugs to infect more than 1 billion ad impressions. Read on to learn what else happened last week in security news.

April 9, 2019

Phishing Campaign Makes Use of SingleFile Browser Extension Tool to Obfuscate Malicious Activity

2 min read - In a recent phishing campaign, fraudsters used a legitimate browser extension tool called SingleFile to obfuscate their attacks and remain undetected.

September 28, 2018

Partnerstroka Tech Support Scam Preys on Users With New Browser Locking Tactic

2 min read - Researchers discovered a large tech support scam operation called Partnerstroka that preyed on unsuspecting users with an innovative browser locking technique.

March 19, 2018

Websites Replace Digital Certificates as Browsers Set Deadlines to Revoke Trust

2 min read - One of the largest certificate authorities announced that the vast majority of the top 1 million websites had replaced the digital certificates major browsers plan to phase out in the coming months.

March 15, 2018

Chrome OS Finds a Seat at the Unified Endpoint Management Table

2 min read - As a show of its commitment to security in the workplace for Chrome OS, Google announced an extension of its management APIs to third-party MDM and EMM software providers.

October 31, 2017

Catch-All Google Chrome Extension Conducts Wide-Ranging Data Theft

2 min read - A malicious Google Chrome extension dubbed Catch-All is using a simple phishing scheme to commit data theft against users in Brazil.

October 12, 2017

37,000 Users Download Phony Adblock Plus App

2 min read - Users who downloaded a phony Adblock Plus app should be on the lookout for a possible data breach. Google has since removed the app from its Chrome Store.