Greta Thunberg used as a bait by cybercrime to spread Emotet
CertPa cyber security experts: A malware campaign is underway with spear phishing attacks on the occasion of Christmas. Proofpoint: They also target .edu domains.
Cybercrime, Emotet spreads through SMEs compromised domains across APAC
Palo Alto Networks cyber security experts: Malware variants are distributed due to lack of updating and patching the web servers, and thanks to WordPress vulnerabilities.
Cybercrime, the new TrickBot dropper analyzed in depth
Yoroi-Cybaze ZLab cyber security experts discover that is composed by several thousand highly obfuscated Lines of Code and abusing the so-called ADS (Alternate Data Stream).
Cybercrime, GootKit is evolving: Now it can bypass Windows Defender
JamesWT and Vitali Kremez cyber security experts: The malware, a banking trojan, can be excluded from being scanned thanks to a UAC bypass and WMIC commands.
One of the worst enemies for Cybercrime are the automatic translators
Cyber security experts: to maximize the spread of phishing and malspam campaigns, messages are translated without checking in multiple languages. Victims have a weapon to detect fraud.
Cybercrime: LooCipher, the probable heir of GandCrab, has been beaten
Yoroi-Cybaze ZLab cyber security experts develop a free decryptor for the ransomware. The tool, however, requires the malware process to be active.
Cybercrime spreads malware using less-known archive types as initial dropper
Yoroi-Cybaze ZLab cyber security experts: ISO images in particular are exploited. Analyzing a cyber attack against an Italian firm, it emerged the XpertRAT and a Delphi wrapper.
TA505 cybercrime gang launched new campaigns with Gelup-FlowerPippi malware
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Cybercrime, wave of spam in the EU with RTF documents armed with malware
Microsoft cyber security experts: the goal is to spread a backdoor Trojan, exploiting an old vulnerability. Probably there will be new malspam campaigns with same characteristics.
Ursnif, the malware that has been targeting Italy since 2018, is evolving
Yoroi-Cybaze ZLab cyber security experts: Threat Actors implement country-checks and over 10 levels of code obfuscation, in addition to a new steganography technique for Windows 10.