Cybercrime, Panchan is a new botnet and SSH worm targeting Linux servers
Akamai cybersecurity experts: It’s written in golang and and utilizes its built-in concurrency features to maximize spreadability and execute malware modules.
Cybercrime, Emotet via real stolen email conversation is back
The zip attachment contains an xls file, which contacts an internal list of URLs and downloads the dll, starting the malware infection.
Cybercrime, Sysrv – K targets Windows, Linux to steal cryptocurrencies
Microsoft cybersecurity experts: The botnet exploits unpatched vulnerabilities in the Spring Framework and WordPress plugins to infect systems with mining malware.
Cybercrime, second Emotet campaign via real stolen email conversation
The xls attachment directly contacts an internal list of URLs and downloads the dll, starting the malware infection.
Cybercrime, a real stolen email conversation spread Emotet
The zip attachment contains a file that runs a PS and downloads the dll from an internal list of url, starting the malware infection.
Cybercrime, new Emotet campaign in Italy via botnet Epoch 5
The xlsm attachment of the email contacts a single url and downloads the dll, starting the malware infection chain.
Cybercrime, new Emotet campaign in Italy via EA Arpa
The zip attachment contains an xls file that contacts an internal list of URLs and downloads the dll from Epoch5 botnet, starting malware infection.
Cybercrime, Emotet again in Italy via “RE: email @”
The zip attachment contains an xlsm file: This contacts url from a list of 4 and downloads the dll, activating the malware infection.
Cybercrime, Emotet returns to Italy via “RE: Email” email
The zip attachment contains an xls file: This starts a powershell script, which contacts various URLs and downloads the dll, activating the malware infection chain.
Cybercrime, Hikvision products targeted by Moobot
Fortinet cybersecurity experts: Threat actors leverage the critical vulnerability CVE-2021-36260 to install and run the malware, a Mirai botnet variant.