Security Affairs

OCTOBER 24, 2020

Experts warn of a phishing campaign that already targeted up to 50,000 Office 365 users with a fake automated message from Microsoft Teams. Secruity researchers reported that up to 50,000 Office 365 users have been targeted by a phishing campaign that pretends to be automated message from Microsoft Teams. ” concludes the report.

Phishing 145

Phishing Advertising Passwords Hacking 145

Security Affairs

AUGUST 9, 2020

Researchers detailed a new evasive phishing technique that leverages modified favicons to inject e-skimmers and steal payment card data covertly. Researchers from cybersecurity firm Malwarebytes have analyzed a new evasive phishing technique used by attackers in the wild in Magecart attacks. Pierluigi Paganini.

Phishing 143

Phishing Advertising Scams Accountability 143

Security Affairs

JANUARY 2, 2020

Crooks are exploiting the popularity of the Star Wars saga to monetize their efforts, experts warn of online streaming sites delivering malware. Cybercriminals leverage popular movies like Star Wars to lure users into downloading malware to watch exclusive scenes or the full movie. Pierluigi Paganini.

Phishing 79

Phishing Malware Advertising Media 79

Malwarebytes

MARCH 22, 2023

Malware authors are artificially pumping up the size of the document in order to try and fool or break security tools. Macros, used to automate aspects of your documents , are a tried and tested way of infecting a PC with malware. Malware authors know this, and will do everything in their power to make you enable them.

Malware 98

Malware Scams Social Engineering Banking 98

Security Affairs

MARCH 8, 2020

Experts uncovered a new Coronavirus (COVID-19 ) -themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware. states the analysis published by FireEye.

Malware 120

Malware Scams Social Engineering Phishing 120

Security Affairs

SEPTEMBER 18, 2020

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten. Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. Pierluigi Paganini.

Malware 102

Malware Phishing Accountability Advertising 102

SecureList

AUGUST 5, 2021

A fake notification about a Microsoft Teams meeting or a request to view an important document traditionally takes the victim to a phishing login page asking for corporate account credentials. In addition to various cloud-related emails, we blocked messages disguised as business correspondence and containing links to malware.

Phishing 119

Phishing Banking Scams Computers and Electronics 119

Heimadal Security

DECEMBER 14, 2021

Agent Tesla initially detected in late 2014, is a known spyware aimed at collecting sensitive data from a victim’s device, such as stored application credentials and keyboard inputs (keylogger). The post Agent Tesla Spyware Used in Phishing Campaign appeared first on Heimdal Security Blog.

Spyware 69

Spyware Phishing Internet Internet 69

Adam Levin

OCTOBER 8, 2020

The United States Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert warning of an increase in Emotet malware-based phishing attacks on state and local agencies. Emotet is a trojan-style strain of malware that is typically spread via email attachment but can rapidly propagate itself across networks.

Government 208

Government Antivirus Phishing Banking 208

Security Affairs

JUNE 17, 2019

Security researchers at Cofense have spotted a phishing campaign aimed at commercial banking customers distributing a new remote access trojan (RAT) tracked as WSH RAT. “This new variant is named WSH Remote Access Tool (RAT) by the malware’s author and was released on June 2, 2019. . ” continues the post.

Banking 102

Banking Phishing Advertising Malware 102

Security Affairs

AUGUST 23, 2020

enabling bad actors to perform spear-phishing attacks comparatively with a high success rate. An attacker could exploit the weakness to carry out spear-phishing campaigns using messages that include links to malicious files hosted on Google Drive. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 130

Malware Phishing Advertising Antivirus 130

Security Affairs

AUGUST 13, 2020

The FBI and NSA issue joint alert related to new Linux malware dubbed Drovorub that has been used by the Russia-linked APT28 group. The FBI and NSA have published a joint security alert containing technical details about a new piece of Linux malware, tracked as Drovorub , allegedly employed by Russia-linked the APT28 group.

Malware 135

Malware Advertising IoT Government 135

Security Affairs

JULY 19, 2020

The four malware families are named Guildma, Javali, Melcoz, and Grandoreiro, experts believe are the result of a Brazilian banking group/operation that is evolving its capabilities targeting banking users abroad. Experts noticed that the malware uses the BITSAdmin tool to download the additional modules.

Banking 101

Banking Malware Phishing Advertising 101

Security Affairs

MARCH 5, 2020

Crooks are using a new phishing technique to trick victims into accepting the installation of a security certificate update and deliver malware. We have already observed threat actors distributing malware masqueraded by legitimate software updates. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 113

Malware Advertising Software Phishing 113

Security Affairs

FEBRUARY 22, 2021

Researchers spotted a new Office malware builder, tracked as APOMacroSploit, that was employed in a campaign targeting more than 80 customers worldwide. Researchers from security firm Check Point uncovered a new Office malware builder called APOMacroSploit, which was employed in attacks that targeted more than 80 customers worldwide.

Malware 109

Malware Antivirus Phishing Cryptocurrency 109

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey.

Phishing 82

Phishing Social Engineering Malware Advertising 82

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Downloaders , intended for the installation of additional malware,and backdoors , granting cybercriminals remote access to victims’ computers, also made it to top-3.

Phishing 102

Phishing Ransomware Spyware Banking 102

SiteLock

AUGUST 27, 2021

Malware has infected roughly a third of the world’s computers , costing companies across the globe trillions of dollars each year. In 2014, nearly 1 million new pieces of malware were released every day, but most hackers relied on old techniques to create new threats. But first we’ll answer a basic question: What is malware?

Malware 98

Malware Small Business Computers and Electronics Adware 98

Security Affairs

APRIL 26, 2020

Several US universities and colleges were targeted in phishing attacks aimed at delivering malware previously used by China-linked APT groups. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Malware 98

Malware Phishing Advertising Education 98

SiteLock

AUGUST 27, 2021

According to the report “A resurgence of RAM scraping malware is the most prominent tactical development in 2013,” the same tactic used in the giant Target breach. The three most common forms of attack on web apps were phishing (to lure users into revealing their passwords), brute force attacks to crack passwords, and SQL injections.

Retail 52

Retail Data breaches DDOS Passwords 52

Security Affairs

MARCH 20, 2019

Security experts at Check Point uncovered a sophisticated malware campaign spreading the SimBad malicious code through the official Google Play Store. Researchers at Check Point have uncovered a sophisticated malware campaign spreading the SimBad agent through the official Google Play Store. com ’ as an ad-related SDK.

Malware 108

Malware Phishing Advertising Scams 108

Security Affairs

AUGUST 15, 2020

The Emotet malware has begun to spam COVID19-themed emails to U.S. The infamous Emotet malware is back, operators have begun to spam COVID-19 themed emails to the U.S. Early this year, the Emotet malware was employed in spam COVID19-themed campaigns that targeted those countries that were already affected by the pandemic.

Malware 94

Malware Advertising Phishing Hacking 94

Security Affairs

OCTOBER 10, 2020

Google improves malware protection for Google Chrome users who are covered by the company’s Advanced Protection Program (APP). Google announced an improved malware protection. Google announced an improved malware protection. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” . .

Accountability 71

Accountability Malware Phishing Advertising 71

Security Affairs

JUNE 12, 2020

The attackers first disable protections for running macro scripts in Outlook then deploy the code to send phishing messages to the victim’s contacts. This is the first time researchers publicly document an attack employing an OTM file and Outlook macro to carry out spear-phishing campaigns. SecurityAffairs – Gamaredon, malware).

Malware 102

Malware Phishing Advertising Government 102

Security Affairs

FEBRUARY 14, 2020

The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) released reports on North Korea-linked HIDDEN COBRA malware. Each report includes a detailed “malware descriptions, suggested response actions, and recommended mitigation techniques.” Pierluigi Paganini.

Malware 114

Malware Passwords Advertising Antivirus 114

Malwarebytes

MAY 5, 2022

Agent Tesla is a well-known data stealer written in.NET that has been active since 2014 and is perhaps one of the most popular payloads observed in malspam campaigns. The following email accounts were used in various phishing and data stealing operations: along.aalahajirazak.ibrahim@gmail.com administracion@romexpert.es

Malware 78

Malware Scams Phishing Accountability 78

Security Affairs

APRIL 26, 2020

Several US universities and colleges were targeted in phishing attacks aimed at delivering malware previously used by China-linked APT groups. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Malware 82

Malware Phishing Advertising Education 82

Security Affairs

MARCH 15, 2020

Experts found a new backdoor malware called BlackWater that pretends to provide information about the COVID-19 outbreak while abusing Cloudflare Workers as an interface to the C2 server. Upon execution, the BlackWater malware connects to a Cloudflare Worker that acts as a command and control server. "Important – COVID-19.rar"

Malware 110

Malware Advertising Phishing Hacking 110

Security Affairs

AUGUST 27, 2019

Researchers at Cofense uncovered an advanced phishing campaign delivering Quasar RAT via fake resumes. Experts at security firm Cofense observed an advanced phishing campaign delivering Quasar RAT via fake resumes. The fake resumes distributed in this phishing campaign detected are password-protected Microsoft Word documents.

Phishing 79

Phishing Passwords Advertising Malware 79

Security Affairs

APRIL 18, 2020

TrickBot is the malware that most of all is involved in COVID-19-themed attacks, Microsoft’s Office 365 Advanced Threat Protection (ATP) data reveals. Based on Office 365 ATP data, Trickbot is the most prolific malware operation using COVID-19 themed lures. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 113

Malware Advertising Security Intelligence Phishing 113

Security Affairs

JUNE 28, 2020

In other attempts detected by ACSC, threat actors launched spear-phishing to harvest credentials, deliver malware, and steal other sensitive data from the victims. “The ACSC has identified instances where users have executed malware embedded in email attachments. The threat actors used malware (i.e.

Malware 112

Malware Advertising Government Cyber Attacks 112

Security Affairs

AUGUST 19, 2019

Phishing is one of the oldest methods of cyberattacks. Types of Phishing Attacks. There are different types of phishing attacks and each is deceiving and manipulative in its own unique way. The most common type is phishing is carried out through fraudulent email receptionist. Another targeted phishing practice is Whaling.

Phishing 88

Phishing Accountability Authentication Passwords 88

Security Affairs

JULY 22, 2019

Last week, hackers published a list of Discord credentials (email addresses/passwords) that were allegedly phished from the users of the gaming chat platform. Last week, a group of hackers published a list of Discord login credentials (email addresses and passwords) that were allegedly phished from the users of the gaming chat platform.

Phishing 76

Phishing Data breaches Passwords Advertising 76

Security Affairs

AUGUST 14, 2020

The campaigns were classified as either phishing or malware. Phishing and Malware Q2 2020. The results depicted in Figure 1 show that phishing campaigns (84,5%) were more prevalent than malware (15,5%) during Q2 2020. Malware by Numbers.

Threat Reports 127

Threat Reports Phishing Banking Malware 127

Security Affairs

SEPTEMBER 24, 2019

Security experts at Proofpoint observed a new wave of phishing attacks aimed at US Utilities in an attempt to deliver the LookBack RAT. Security experts at Proofpoint have discovered a new series of phishing attacks targeting entities US utilities in an attempt to deliver the LookBack RAT. nceess [. ] Nceess [. ]

Phishing 76

Phishing Energy and Utilities Advertising Engineering 76

Security Affairs

FEBRUARY 23, 2020

Cisco Talos researchers discovered a new malware, tracked as ObliqueRAT, that was employed targeted attacks against organizations in Southeast Asia. Experts from Cisco Talos discovered a new malware, tracked as ObliqueRAT, that appears a custom malware developed by a threat actor focused on government and diplomatic targets. .

Government 115

Government Malware Advertising Passwords 115

Security Affairs

APRIL 2, 2019

Attackers Store Malware in Hidden Directories of Compromised HTTPS Sites. Hacked websites were used for several malicious purposes, experts observed compromised WordPress and Joomla websites serving Shade /Troldesh ransomware, coin miners, backdoors, and some times were involved in phishing campaigns. “The hidden /.well-known/

Malware 106

Malware Phishing Ransomware Advertising 106