Cybercrime, the BlueStealer campaign from the UAE changes its template
The attachment of the new "Document approval" email contains an exe: the malware. The stolen data is always exfiltrated to the same Telegram API C2.
Cybercrime, the Bangladesh-themed AgentTesla campaign changes template
The .z attachment of an email that simulates a legitimate sender contains an exe: the malware. The stolen data is exfiltrated via STMP to the same server as the RFQ campaign.
Cybercrime, new AgentTesla campaign via beauty products
The rar attachment of an email requesting several products from China contains an exe file: the malware. The stolen data is exfiltrated via SMTP.
Cybercrime, the AgentTesla beauty products-themed campaign intensifies
In 3 days, as many emails arrived. The text is always the same, change the name of the attachment. A rar with an exe inside: the malware.
Cybercrime, beauty products are the new vehicle for AgentTesla
The rar attachment in the fake email from a real UK company contains an exe: the malware. The stolen data is exfiltrated via FTP to a domain in Iran.
Cybercrime, Shatak/TA551 template is the new trend to spread malware
The cyber security experts: It’s used in many campaigns - from Ursnif/Gozi to IcedID - and different countries at the same time. Furthermore, payloads are changed periodically.
Cybercrime, Emotet is back with a new worldwide campaign
Bleeping Computer cyber security experts: The malware uses a new mail template, and it deploys further modules that steal a victim's mail, spread to other computers, or use send spam.