Cybercrime, Emotet returns to hit Italy with a new campaign
The bait is always real stolen email conversations. The doc attachment contacts the first available url from a list within it to start the malware infection.
Cybercrime, new MassLogger campaign on false invoices
The malware infection chain to spread the keylogger is initiated by a .doc document, which contacts a malicious link.
Cybercrime, G7 countries are worried about ransomware attacks
The Group’s Finance Ministers and Central Bank Governors sound the alarm on the malware growing threat and call upon all countries to effectively implement the FATF standards.
Cybercrime, QuakBot use SERVICE STREAM in its signed global campaign
It exploits company certificates to sign the executable and decept the anti virus. The malware infection chain is activated by the attachment.
Cybercrime, new phishing attempt on WordPress and webmail users
The lure is a supposed change of IP, that requires a confirmation of the account. This passes through a fake page. The objective is to steal credentials.
Cybercrime, here it comes the Intuit themed Dridex campaign
The implant is the same as the DHL one. The attachment contacts a random link from a list within it to download a DLL and infect the PC with malware.
Cybercrime, Dridex conveyed with a fake DHL invoice
The emails contain an .xlsm attachment which, when opened, contacts a random link from an internal list. This downloads a DLL that infects the PC with malware.
Cybercrime, Quakbot exploits Microsoft Defender to spread
Bleeping Computer: The aim is to lure victims into enabling Excel macros. Threat actors also continue using signed campaigns for distributing the malware.
Cybercrime, Quakbot “signed” campaign continues to spread worldwide
It exploits company certificates to sign the executable and decept the anti virus. The malware infection chain is activated by the attachment.
Cybercrime, new Android ransomware: AndroidOS/MalLocker.B
Microsoft cybersecurity experts: The malware doesn’t encrypt the files. It blocks access to device by displaying a screen with the ransom note that appears over every other window.