Cybercrime, the Dridex campaign via Quickbooks is back
The xls attachment of the mail, also arrived in Italy, randomly contacts a link from an internal list and downloads the dll, starting the malware infection.
Cybercrime, Ursnif / Gozi campaign in Italy via fake Findomestic email
The xlsb attachment contacts a single url from which it downloads the dll, starting the infection of the malware. But only if the IP is Italian.
Cybercrime, new Formbook global campaign via a fake wire transfer
The email .Gz attachment contains an exe, the malware itself. The goal is to steal sensitive data from victims.
Cybercrime, Vidar campaign via fake SWIFT payment
The email xz attachment contains an exe, the malware itself. This is an info stealer, which targets passwords, credit cards and cryptocurrency wallets.
Cybercrime, Ursnif / Gozi is now delivered with the IcedID template
The attack is part of the TA551 (Shathak) campaign. The xlsm file in the email zip attachment contacts internal URLs to download the dll, starting malware infection.
Cybercrime, great wave of IcedID attacks via mail zip attachments
Each contains a different xls file that contacts a url from an internal list of five and downloads the dll activating the malware infection.
Cybercrime, new IcedID campaign via email zip attachments
Each one contains a different xlsm file that contacts a url from an internal list of 6 and downloads the dll activating the malware infection.
Cybercrime, Formbook conveyed by a fake purchase order from Thailand
The email Gz attachment contains an executable, the malware itself. This, if opened, triggers the infection.
Cybercrime, false NetSuite invoice conveys the latest Dridex campaign
The email xls attachment randomly contacts a url from an internal list and downloads the dll, which starts the malware infection.
Cybercrime, fake email from the US IRS on Covid-19 conveys Trickbot
The xlsb attachment contacts a single url and downloads the dll, which starts the malware infection.