Cybercrime, Agent Tesla campaign with the “purchase order” lure
New malspam campaign discovered by the cybersecurity expert Mich. The .gz attachment activates the malware infection chain
Cybercrime, ThunderX has been beaten by Tesorion
The cyber security experts built and spread a free drecryptor through the NoMoreRansom project. The malware could destroy some data irreversibly on purpose.
Cybercrime, MassLogger hits again in a international campaign
Organizations targeted in Austria, Belgium, Czech Republic, Denmark, France, UK, Germany, Italy, Netherlands, Spain, and U.S.. The attachments start the malware infection chain.
Cybercrime, Quakbot hits again with new mail and link
The malware infection chain is activated by the xls attachments. It contacts a link that downloads a PNG picture. This one is renamed as .exe and then executed.
Cybercrime, Mount Locker ransomware operation underway
Bleeping Computer cyber security experts: It exploit the double extortion scheme. Hhackers also steal unencrypted files and threaten victims to publish them on a data leak site.
Cybercrime, fake PayPal website downloads Racealer
The cyber security experts Malware Hunter Team and JAMESWT: The phishing site hides a malicious exe, disguised as the Desktop app.
Cyber Espionage, APT28 targets NATO members and partners with Zebrocy
QuoIntelligence cyber security experts: Russian state hackers exploit fake training docs to spread the malware. There are correlations with ReconHell/BlackWater attack.
Cybercrime, the “signed” Quakbot campaign continues worldwide
Cyber security experts JAMESWT and MalwareHunterteam: The goal is to decept the anti virus and let victims install the malware, a powerful banking trojan with strong persistence.
Cybercrime, Emotet updates it’s Epoch 3 urls
Cryptolaemus cyber security experts find new links in the botnet that download the malware. The continuous evolution of the worldwide campaign confirms that it will continue.
Cybercrime, new Dridex worldwide campaign via FedEx
Cyber security expert JAMESWT: The lure is a fake invoice by the courier. The XLS attachment dowloads a DLL that infects the computer with the malware.