McAfee Labs
Read McAfee Labs blogs for the latest threat research, threat intelligence, and thought leadership from the Threat Research team.
Malware Mines, Steals Cryptocurrencies From Victims
How’s your Bitcoin balance? Interested in earning more? The value of cybercurrency is going up. You can increase your holdings...Lazarus Cybercrime Group Moves to Mobile Platform
The McAfee Mobile Research team has identified a new threat that suggests a deviation from the traditional playbook.Android Malware Appears Linked to Lazarus Cybercrime Group
The McAfee Mobile Research team recently examined a new Android malware that contains a backdoor file in the executable and...IoT Devices: The Gift that Keeps on Giving… to Hackers
You’ve probably noticed the recent increase in Internet connected drones, digital assistants, toys, appliances hitting the market.New Android Malware Found in 144 GooglePlay Apps
McAfee’s Mobile Research team has found a new Android malware in 144 “Trojanized” applications on Google Play. We named this...Threat Group APT28 Slips Office Malware into Doc Citing NYC Terror Attack
While monitoring activities around APT28, we identified a malicious Word document that leverages the Microsoft Office DDE technique.Self-Signed Certificates Can Be Secure, So Why Ban Them?
In many organizations the use of self-signed certificates is forbidden by policy. Organizations may ban the use of self-signed certificates.Pirate Versions of Popular Apps Infiltrate Google Play via Virtualization
The McAfee Mobile Research team recently found pirated applications of popular apps distributed on the Google Play store.Expiro Malware Is Back and Even Harder to Remove
The Expiro virus is has been around for more than a decade, and the authors continue to update it with...Configuring McAfee ENS and VSE to Prevent Macroless Code Execution in Office Apps
Microsoft Office macros are a popular method of distributing malware. Users can defend themselves against macro attacks by disabling macros.Code Execution Technique Takes Advantage of Dynamic Data Exchange
Email phishing campaigns are a popular social engineering technique among hackers. The idea is simple.Analyzing Microsoft Office Zero-Day Exploit CVE-2017-11826
Microsoft released an update for an Office zero-day attack. We examined an in-the-wild sample, and share our findings to help others.
