Cybercrime, fake HSBC Bank email carries SnakeKeylogger
The zip attachment contains an exe file: the malware. The stolen data is exfiltrated via SMTP to a mail address.
Cybercrime, “PAYMENTS.PDF” spread Dropbox phishing campaign
The lure is a fake email with the request to edit the folder “PAYMENTS”, by opening a link. It directs to a fake login page with the user legit website on the background.
Cybercrime, double Formbook campaign via SWIFT transaction from Ziraat Bank
Two emails have the same .7z attachment that contains an exe file: the malware.
Cybercrime, Godfather targets Android users of popular financial services
Group-IB cybersecurity experts: The malware is the evolution of an old banking Trojan called Anubis and hit over 400 international targets until now.
Cyber Warfare, IT Army of Ukraine attacks pro-Russia propaganda at the source
Pro-Ukraine volunteers target with DDoS copywriting platforms and online author search services, that produce content for media and social networks.
Cybercrime, Glupteba exploits Bitcoin blockchain to spread
Nozomi Networks cybersecurity experts: The malware is downloaded via Pay-Per-Install networks – online ad campaigns that prompt software in infected installers or software cracks.
Cybercrime, new SharePoint-themed phishing campaign
The goal is to steal the credentials via a fake landing page. Victims have three attempts to digit the password, all of which will be wrong.
Cybercrime, Azorult campaign via Guloader from Turkey
The r19 attachment of an email from the Ziraat bank contains an exe: the loader, which contacts a url and downloads the final malware.
Cybercrime, Vjw0rm goes back to hiding in an email on beauty products
The “$38,570 detailed Invoice Payment” email rar attachment contains a js file: the malware.
Cybercrime, new AgentTesla campaign via beauty products
The rar attachment of an email requesting several products from China contains an exe file: the malware. The stolen data is exfiltrated via SMTP.