Cybercrime, new Dridex campaign via invoice
The xlsb attachment contacts a random url from an internal list and downloads the dll, which activates the malware infection chain.
Cybercrime, false invoice conveys the latest Dridex campaign
The email xlsm attachment contacts a single url and downloads the dll, which starts the infection of the malware.
Cybercrime, DoppelPaymer is back with a new name: Grief
Bleeping Computer: The two Ransomware-as-a-Service operations exploit the same encrypted file format and the distribution channel: the Dridex botnet.
Cybercrime, the Dridex global campaign via Quickbooks evolves
The email xls attachment contacts a random url from an internal list and downloads the malware. The list, however, changes in each file.
Cybercrime, Evil Corp uses PayloadBIN ransomware to evade US sanctions
Bleeping Computer cybersecurity experts: The gang now impersonates Babuk and its malware to let the victims pay the ransoms.
Cybercrime, new Dridex campaign via fake Quickbooks invoice
The email xls attachment contacts a random url from an internal list and downloads the dll, which starts the malware infection.
Cybercrime, Walmart themed Dridex global campaign
The email xlsm attachment contacts a url from an internal list and downloads the dll, starting the malware infection.
Cybercrime, Dridex is back with a Quickbooks global campaign
Bitdefender cybersecurity experts: More than half of the phishing emails, sent to spread the malware, originate from IP addresses in Italy.
Cybercrime, the Dridex campaign via Quickbooks is back
The xls attachment of the mail, also arrived in Italy, randomly contacts a link from an internal list and downloads the dll, starting the malware infection.
Cybercrime, IcedID makes its debut “in style” in the top ten malware chart
CheckPoint cybersecurity experts: The trojan (aka BokBot) comes straight into second place behind Dridex and before Lokibot. It’s a leading player.