Securing Tomorrow. Today.

McAfee Labs Threats Report: April 2021

In this edition, we present new findings in our traditional threat statistical categories – as well as our usual malware, sectors, and vectors – imparted in a new, enhanced digital presentation that’s more easily consumed and interpreted.

Read Blog
Mobile and IoT Security McAfee Labs

One-Click Fraud Variant on Google Play in Japan Steals User Data

Last week McAfee Labs reported a series of “one-click fraud” malware on Google Play in Japan. We have been monitoring this fraudulent activity and have found more than 120 additional variants on Google Play since the previous report. The malicious developers upload five or six applications per account using three ...

McAfee Labs

Turkish ‘Delete Virus’ Targets Facebook Users

Facebook continues to be a favorite target for attackers to spread fake wall-post messages or fake scams. Most of the time these fake messages are involved in fake scams that ask users to respond to surveys. Recently, I discovered a Facebook wall post with a malicious website address that was ...

McAfee Labs

Phishing Threat Uses UTF-8 BOM in ZIP Signature to Evade Detection

This blog was written by Sanchit Karve. Last week, we noticed thousands of malware files in the wild that employ a simple phishing attack by modifying the hosts file on Windows systems. What’s interesting, however, is the technique chosen by the malware authors to distribute their payload. The samples in ...


State of Online Commerce 2013: Word Clouds

  Online commerce is having a greater impact on our lives as more and more businesses take advantage of these new sales channels, from e-tail to mobile commerce, to creating stand-alone mobile apps. With this in mind, we pinpointed four key topics impacting the eCommerce industry today, and created word ...

Family Safety Identity Protection Mobile and IoT Security

What is a “Drive-By” Download?

Gone are the days when you had to click to “accept” a download or install a software update in order to become infected. Now, just opening a compromised web page could allow dangerous code to install on your device. You just need to visit or “drive by” a web page, ...

McAfee Labs

Multiple Java Exploits Hide in a Jar (File)

Exploits of the Java Runtime Environment (JRE) have been extensively used in drive-by-download toolkits such as Blackhole and Red Kit. New vulnerabilities discovered in 2013, such as CVE-2013-1493 and CVE-2013-0422, are popular, and we still see lots of older exploits such as CVE-2012-1723, CVE-2012-4681, and CVE-2012-0507.  These vulnerabilities are already ...

Family Safety

Online Safety for Kids – The App Your Kids are Using Now: Snapchat

The #1 question asked by parents when I present for McAfee’s Online Safety for Kids program, is “Where do I go to find out information about what my kids are doing online?” It’s no secret that kids (especially teenagers) can be less than forthcoming about their online behavior. That’s where ...

McAfee Labs

VSkimmer Botnet Targets Credit Card Payment Terminals

April 2 This blog has been updated with McAfee’s NSP detection. See end of blog. While monitoring a Russian underground forum recently, we came across a discussion about a Trojan for sale that can steal credit card information from machines running Windows for financial transactions and credit card payments. The ...


Starting Your eCommerce Business – Web Security Survival Guide

Ecommerce is shaping up to be a major part of the global retail market, with Forrester predicting that U.S. online retail sales alone will top $370 Billion by 2017. With this in mind, it’s no wonder so many people hope to take advantage of these profits by creating their own ...

Identity Protection

Protect Yourself from Tax Time Scams

Tax season is now upon us, and more than ever, we are opting for the convenience of filing taxes online (81% of us did in 2012). While filing online may be faster and more convenient, there is also some risk that you need to be aware of. During 2012, the ...

Subscribe to McAfee Securing Tomorrow Blogs