Cybercrime, has “FIN6” partnered with the “TrickBot” operators?
Digital Shadows cyber security experts: In a recently cyber-threat campaign, the financially motivated APT allegedly used “Anchor”, a framework associated with the malware.
Cybercrime, IcedID banking Trojan is evolved with substantial changes
IBM cyber security experts: The malware spread via malspam with Office attachments. Files boobytrapped with malicious macros that launch infection routine, fetch and run the payload.
Cybercrime, Emotet spreads through SMEs compromised domains across APAC
Palo Alto Networks cyber security experts: Malware variants are distributed due to lack of updating and patching the web servers, and thanks to WordPress vulnerabilities.
Cybercrime spread PyXie RAT to steal credentials and passwords
Cylance cyber security experts: The new malware targets a wide range of industries. It has been seen in conjunction with Cobalt Strike beacons and a downloader that has similarities to Shifu.
Cybercrime, Mispadu spreads via fake discount coupons for McDonald’s
ESET cyber security experts: The malware, a banking trojan, utilises malvertising on Facebook and extends its attack surface to web browsers. Its goals are monetary and credential theft.
Cybercrime, Emotet activity had a massive increase recently
Nuspire cyber security experts: In September, it’s grown by 730% and steals contents of victim’s inboxes and credentials. The malware has also new features, as TrickBot and Ryuk ransomware.
Cybercrime, Gustuff Android banking trojan is back with new features
Cisco Talos cyber security experts: The malware still attacks Australia and spreads via SMS. But latest version no longer has hardcoded package names and added a “poor man scripting engine”.
Cybercrime, Emotet group attacks companies with an external SOC
The cyber security expert Marco Ramilli, founder of Yoroi-Cybaze analyzed a mail on a “weekly report”. It hides a Word document within obfuscated Macros who drops-executes the malware.
Cybercrime, the NCSC exposes Ryuk ransomware
The cyber security experts are investigating current malware campaigns targeting organisations globally, including in the UK. In some cases, identified also Emotet and Trickbot infections.
Ursnif, the malware that has been targeting Italy since 2018, is evolving
Yoroi-Cybaze ZLab cyber security experts: Threat Actors implement country-checks and over 10 levels of code obfuscation, in addition to a new steganography technique for Windows 10.