CertPa cyber security experts: A malware campaign is underway with spear phishing attacks on the occasion of Christmas. Proofpoint: They also target .edu domains.
Palo Alto Networks cyber security experts: Malware variants are distributed due to lack of updating and patching the web servers, and thanks to WordPress vulnerabilities.
Yoroi-Cybaze ZLab cyber security experts discover that is composed by several thousand highly obfuscated Lines of Code and abusing the so-called ADS (Alternate Data Stream).
JamesWT and Vitali Kremez cyber security experts: The malware, a banking trojan, can be excluded from being scanned thanks to a UAC bypass and WMIC commands.
Cyber security experts: to maximize the spread of phishing and malspam campaigns, messages are translated without checking in multiple languages. Victims have a weapon to detect fraud.
Yoroi-Cybaze ZLab cyber security experts: ISO images in particular are exploited. Analyzing a cyber attack against an Italian firm, it emerged the XpertRAT and a Delphi wrapper.
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Microsoft cyber security experts: the goal is to spread a backdoor Trojan, exploiting an old vulnerability. Probably there will be new malspam campaigns with same characteristics.
Yoroi-Cybaze ZLab cyber security experts: Threat Actors implement country-checks and over 10 levels of code obfuscation, in addition to a new steganography technique for Windows 10.