Cybercrime, Quakbot campaign via real stolen email conversation
The two links in the message download a zip with an xls inside, which contacts three URLs from which the dll is downloaded, starting the malware infection.
Cybercrime, undelivered messages bait for a new phishing campaign
An email invites the user to open a link to retrieve them. This tip to a false login page, targeted on the victim’s address to steal credentials.
Cybercrime, phishing via full mailbox and pending messages
Global campaign to steal email credentials from a fake provider login page, set on the victim's account.
Cybersecurity, anomaly in Microsoft account linked to aliases
I discover that I have one. Formally it does not exist, but it has other phone numbers. The company unveals the mystery, but only in part. Bug?
Cybercrime, new phishing campaign exploits the email “storage limit” lure
Fake message from victim’s help desk invites him to open a link. It redirects to a false tailored login page. The objective is to steal the password.
Cybercrime, phishing campaign via “Emails Suspended on Server Postmaster”
Fake webmail login page, pre-compiled with victim’s username, asks to digit the password to fix the problem. But it just steals credentials.
Cybercrime, phishing campaign passes from Boa web server
The lure is a fake email on an email closure. It contains a link to update the account via a login page. Also this one is false. The only aim is to steal credentials.
One of the worst enemies for Cybercrime are the automatic translators
Cyber security experts: to maximize the spread of phishing and malspam campaigns, messages are translated without checking in multiple languages. Victims have a weapon to detect fraud.
Cybercrime is spreading a new ransomware: LooCipher
Yoroi-Cybaze ZLab cyber security experts: The malware works as an encryptor and a decryptor. It abuses Clearnet-to-Tor proxy services to connect to its C2, hidden behind onion sites.
Weaponized emails are top APTs infection vector in today malware landscape
Yoroi-Cybaze cyber security experts: cybercrime and state-sponsored hackers use simple social engineering tricks to lure users to enable the malicious Macros.