Cybercrime, Emotet still in Italy with a document-themed campaign
The email xls attachment contacts a link from an internal list and downloads the dll, using the epoch 4 botnet, starting the malware infection.
Cybercrime, Emotet is back in Distro Mode
Cryptolaemus cybersecurity experts detect that Epoch 4 and 5 began spamming again. Malware infections passes by direct attached XLS files and zipped-password protected XLS.
Cybercrime, Panchan is a new botnet and SSH worm targeting Linux servers
Akamai cybersecurity experts: It’s written in golang and and utilizes its built-in concurrency features to maximize spreadability and execute malware modules.
Cybercrime, Emotet via real stolen email conversation is back
The zip attachment contains an xls file, which contacts an internal list of URLs and downloads the dll, starting the malware infection.
Cybercrime, Sysrv – K targets Windows, Linux to steal cryptocurrencies
Microsoft cybersecurity experts: The botnet exploits unpatched vulnerabilities in the Spring Framework and WordPress plugins to infect systems with mining malware.
Cybercrime, second Emotet campaign via real stolen email conversation
The xls attachment directly contacts an internal list of URLs and downloads the dll, starting the malware infection.
Cybercrime, a real stolen email conversation spread Emotet
The zip attachment contains a file that runs a PS and downloads the dll from an internal list of url, starting the malware infection.
Cybercrime, new Emotet campaign in Italy via botnet Epoch 5
The xlsm attachment of the email contacts a single url and downloads the dll, starting the malware infection chain.
Cybercrime, new Emotet campaign in Italy via EA Arpa
The zip attachment contains an xls file that contacts an internal list of URLs and downloads the dll from Epoch5 botnet, starting malware infection.
Cybercrime, Emotet again in Italy via “RE: email @”
The zip attachment contains an xlsm file: This contacts url from a list of 4 and downloads the dll, activating the malware infection.