Cybercrime, maxi phishing campaign against the main email providers
The bait is a fake eFax. The link in the message points to a page where you can choose your provider and enter sensitive data, which will be stolen.
Cybercrime, Lokibot is now also conveyed through artwork
The email xlsx attachment contacts a single link from which an exe is downloaded and executed: the malware.
Cybercrime, new wave of the FickerStealer campaign via DocuSign and Hancitor
The email xls attachment contains a dll with Chanitor, which downloads the final malware.
Cybercrime, Agent Tesla campaign via fake DHL receipt
The email compressed attachment contains an exe: the malware itself. The data is exfiltrated via smtp.
Cybercrime, new wave of the invoice-themed Formbook campaign
The email .tar attachment contains an exe file: the malware itself.
Cybercrime, the Guloader campaign back to Italy via a false quotation
There are 2 emails with different attachments, zip and exe files inside. The malware, however, is the same. It is not known what it downloads next.
Cybercrime, strange SnakeKeylogger campaign from Pakistan
The email lzh attachment contains a zip disguised as a bat. To open it you need a password, the name of the exe inside: the malware.
Cybercrime, the Dridex global campaign via Quickbooks evolves
The email xls attachment contacts a random url from an internal list and downloads the malware. The list, however, changes in each file.
Cybercrime, the FickerStealer campaign via DocuSign and Hancitor is back
The email doc attachment contains a dll with Chanitor, which downloads the final malware.
Cybercrime, Agent Tesla conveyed via fake beneficiary certificate
The email ace attachment of the email contains an exe: the malware itself. The data is exfiltrated via smtp. It is the continuation of the 13 July campaign.