Cybercrime, Agent Tesla conveyed by the confirmation of the bank details
The email ACE attachment contains an exe: the malware itself. Stolen data is exfiltrated via smtp.
Cybercrime, Agent Tesla campaign via “Performa Invoice No. 21120211”
The email gz attachment contains an exe: the malware itself. Stolen data is exfiltrated through FTP.
Cybercrime, new AgentTesla campaign via double invoice
The email gz attachment contains an exe: the malware itself. The stolen data is then exfiltrated with ftp.
Cybercrime, new Agent Tesla campaign via purchase order
The email gz attachment contains an exe: the malware itself. If opened, it activates the chain of infection. Stolen information is exfiltrated via FTP.
Cybercrime, Agent Tesla conveyed to Italy by a false order
The email gz attachment contains an exe: the malware itself. Stolen data is exfiltrated via ftp.
Cybercrime, Agent Tesla goes through a fake order from a Turkish company
The email gz attachment contains an executable: the malware itself. If open, it activates the infection. The stolen data is then exfiltrated via ftp.
Cybercrime, new Agent Tesla campaign via request for quotation (RFQ)
The email gz attachment contains an exe: the malware itself. This steals data and exfilters it through FTP.
Cybercrime, AgentTesla is back with a courier-themed campaign
The GZ attachment of the email directly contains the malware (an exe file). This steals sensitive information and exfilters it via FTP.
Cybercrime, MountLocker evolves and count on affiliate programs
Blackberry cybersecurity experts: The new ransomware version has a reduced size and encrypts less files, but with a broaden targeting.
Cybercrime, Agent Tesla now could use Telegram to exfiltrate data
Abuse.ch cybersecurity experts: Corporate web proxy operators shoud block outgoing network traffic towards api.telegram .org. The malware until now exploited FTP or SMTP.