2014, Malware and Social Engineering - Cyber Security Informer

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

SecureWorld News

APRIL 22, 2025

Once control is granted, the attacker can secretly install malware, including infostealers and remote access trojans (RATs), onto the victim's machine. The malware then exfiltrates sensitive data, including cryptocurrency wallet credentials, personal information, and private keys. billion hack of the Bybit exchange in February 2025.

Cryptocurrency

Cryptocurrency Social Engineering Cybercrime Engineering

U.S. Indicts North Korean Hackers in Theft of $200 Million

Krebs on Security

FEBRUARY 17, 2021

In reality, prosecutors say, the programs were malware or downloaded malware after the applications were installed. “ Hidden Cobra ” is the collective handle assigned to the hackers behind the AppleJeus malware. billion from banks and other victims worldwide.

Cryptocurrency

Cryptocurrency Financial Services Banking Government

New Coronavirus-themed malspam campaign delivers FormBook Malware

Security Affairs

MARCH 8, 2020

Experts uncovered a new Coronavirus (COVID-19 ) -themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware. states the analysis published by FireEye.

Malware

Malware Scams Social Engineering Phishing

Russia-Linked Turla APT uses new malware in watering hole attacks

Security Affairs

MARCH 13, 2020

The Russia-linked APT group Turla employed two new pieces of malware in attacks launched over a period of roughly two months in the fall of 2019. The Russia-linked APT group Turla employed two new pieces of malware in attacks launched over a period of roughly two months in the fall of 2019. Kill (uninstall) the malware. .

Malware

Malware Social Engineering Advertising Government

Privacy Roundup: Week 3 of Year 2025

Security Boulevard

JANUARY 20, 2025

Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user. Successful exploitation requires social engineering users into manipulating a specially crafted file.

Surveillance

Surveillance Malware Data breaches Scams

Crooks spread malware via pirated movies during COVID-19 outbreak

Security Affairs

APRIL 30, 2020

Microsoft warns of a spike in malware spreading via pirate streaming services and movie piracy sites during the COVID-19 pandemic. Crooks are attempting to take advantage of COVID-19 pandemic spreading malware via pirate streaming services and movie piracy sites during the COVID-19 outbreak, Microsoft warns. . Pierluigi Paganini.

Malware

Malware Security Intelligence Adware Social Engineering

Which was the most common threat to macOS devices in 2019? Shlayer malware

Security Affairs

JANUARY 27, 2020

Malware authors continue to show interest in macOS devices, Kaspersky experts confirmed that the Shlayer malware has been the most common threat to the macOS platform. Security experts from Kaspersky Lab revealed that the Shlayer malware was the most widespread macOS threat in 2019. up to 10.14.3. up to 10.14.3. Cimpli, AdWare.

Adware

Adware Malware Social Engineering Advertising

ZINC Hackers Leverage Open-source Software to Lure IT Pros

eSecurity Planet

OCTOBER 3, 2022

PuTTY, KiTTY, TightVNC, Sumatra PDF Reader, and the muPDF/Subliminal Recording software installer have been backdoored to perform a wide range of social engineering campaigns that started in April 2022. Using DLL hijacking, ZINC can schedule additional tasks and install malware on the compromised machines. Highly Evasive Attack.

Software

Software Social Engineering Engineering Phishing

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

Security Affairs

AUGUST 12, 2020

The experts first discovered the malware in June 2018, but it has been available since 2014, when they observed threat actors spreading it via a Microsoft Word document containing an auto-executable malicious VBA Macro. “When combined with timely social engineering lures, these non-sophisticated attacks continue to be successful.”

Passwords

Passwords Spyware VPN Malware

Cerberus, a new banking Trojan available as malware-as-a-service in the underground

Security Affairs

AUGUST 13, 2019

A new malware-as-a- service dubbed Cerberus has emerged in the threat landscape, it is an Android RAT developed from scratch that doesn’t borrow the code from other malware. The malware implements banking Trojan capabilities such as the use of overlay attacks, the ability to intercept SMS messages and access to the contact list.

Banking

Banking Malware Advertising Social Engineering

New TA2101 threat actor poses as government agencies to distribute malware

Security Affairs

NOVEMBER 15, 2019

A new threat actor tracked as TA2101 is conducting malware campaigns using email to impersonate government agencies in the United States, Germany, and Italy. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Malware Social Engineering Banking

Beware: Fake IRS tax email delivers Emotet malware

Malwarebytes

MARCH 22, 2023

Malware authors are artificially pumping up the size of the document in order to try and fool or break security tools. Macros, used to automate aspects of your documents , are a tried and tested way of infecting a PC with malware. Malware authors know this, and will do everything in their power to make you enable them.

Malware

Malware Scams Social Engineering Banking

The return of the AdvisorsBot malware

Security Affairs

FEBRUARY 1, 2019

Security experts at Cybaze – Yoroi ZLab have analyzed a new sample of the AdvisorsBot malware, a downloader that was first spotted in August 2018. As usual, the malware looks like a legitimate e-mail attachment, named as “invoice.doc”. Figure 3 – Piece of VBS script that starts malware infection. DLL Analysis.

Malware

Malware DNS Social Engineering Advertising

Hackers use overlay screens on legitimate sites to steal Outlook credentials

Security Affairs

SEPTEMBER 5, 2020

“Another social engineering technique the threat actor uses to lure the employee into interacting with the email is giving the messages urgency, asking the recipient to review them or they will be deleted after three days.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Phishing Engineering Advertising

Anubis II – malware and afterlife

Security Affairs

MARCH 25, 2019

Due to the growing demand for Android banking malware, threat actors continue using Anubis even is the creator has vanished. Besides being the Egyptian God associated with mummification and afterlife, Anubis is also an Android banking malware that has caused quite some trouble for over 300 financial institutions worldwide since 2017.

Malware

Malware Banking Advertising Social Engineering

Ex-NASA contractor pleaded guilty for cyberstalking crimes

Security Affairs

OCTOBER 14, 2018

The man acknowledged having targeted friends, co-workers, and family members, he used social engineering tricks and also used malware to compromise victims’ systems. He got other victims to install computer malware allowing him to access their computers.” ” states the Associated Press.

Identity Theft

Identity Theft Social Engineering Advertising Hacking

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Security Affairs

DECEMBER 12, 2024

These are the first known mobile malware families linked to the Russian APT. Gamaredon has been launching cyber-espionage campaigns on Ukraine since at least 2014. The two malware families can collect data such as SMS messages, call logs, phone call audio, photos from device cameras, device location, and contact lists.

Mobile

Mobile Malware Surveillance Social Engineering

Over 3,000 Android Malware spotted using unsupported/unknown compression methods to avoid detection

Security Affairs

AUGUST 19, 2023

Threat actors are using Android Package (APK) files with unsupported compression methods to prevent malware analysis. What is the best way to bypass #Malware analysis on #Android ? Checkout the local and central Zipfile header of APK 2f371969faf2dc239206e81d00c579ff and tell us what you see.

Malware

Malware Social Engineering Engineering Hacking

Zeus Sphinx spam campaign attempt to exploit Coronavirus outbreak

Security Affairs

MARCH 30, 2020

The Zeus Sphinx malware is back, operators are now spreading it exploiting the interest in the Coronavirus outbreak. The Zeus Sphinx malware is back, it was observed in a new wave of attacks attempting to exploit the interest in the Coronavirus outbreak. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking

Banking Malware Social Engineering Advertising

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Balaban This ransomware was doing the rounds over spam generated by the Gameover ZeuS botnet, which had been originally launched in 2011 as a toolkit for stealing victim’s banking credentials and was repurposed for malware propagation. These included PClock, CryptoLocker 2.0, Crypt0L0cker, and TorrentLocker.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Return of the MINEBRIDGE RAT With New TTPs and Social Engineering Lures

Security Boulevard

FEBRUARY 23, 2021

Such lures are used as social engineering schemes by threat actors; in this case, the malware was targeted at security researchers. We have recently observed other instances of threat actors targeting security researchers with social engineering techniques. Threat attribution. Currently logged in user name.

Social Engineering

Social Engineering Engineering Passwords Malware

North Korea’s Lazarus compromised dozens of organizations in Israel

Security Affairs

AUGUST 14, 2020

The Lazarus APT is linked to North Korea, the activity of the Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. Recently Kaspersky experts reported that Lazarus APT Group has used a new multi-platform malware framework, dubbed MATA , to target entities worldwide.

Cyber Attacks

Cyber Attacks Social Engineering Advertising Malware

Emotet spam uses unconventional IP address formats to evade detection

Security Affairs

JANUARY 24, 2022

Experts warn Emotet malware campaign using “unconventional” IP address formats in an attempt to evade detection. Threat actors behind a recent Emotet malware campaign have been observed using using “unconventional” IP address formats to evade detection. ” reported Trend Micro. ” reported Trend Micro.

Malware

Malware Social Engineering Ransomware Banking

Experts analyzed the distribution technique used in a recent Emotet campaign

Security Affairs

JANUARY 2, 2019

In November, experts from ESET uncovered a massive spam campaign that was distributing the Emotet malware. ” The attack begins with an email message with a weaponized document that once opened will ask the victim to enable macros using social engineering tricks. SecurityAffairs – Emotet, malware).

Social Engineering

Social Engineering Advertising Malware Engineering

The Muncy malware is on the rise

Security Affairs

FEBRUARY 19, 2019

Over the last few days, a phishing campaign from DHL and entitled “ DHL Shipment Notification ” has been targeted users worldwide distribution the Muncy malware. Now, the malware is targeting user’s worldwide and has been spread via phishing campaigns. The process flow diagram below shown how the malware works.

Malware

Malware Phishing DNS Engineering

U.S. taxpayers hit by a phishing campaign delivering the Amadey bot

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey.

Phishing

Phishing Social Engineering Malware Advertising

Mysterious snail mail from China sent to US agencies includes Malware-Laden CD

Security Affairs

JULY 29, 2018

state and local government agencies have reported receiving suspicious letters via snail mail containing malware-laden CD. state and local government agencies have reported receiving suspicious letters via snail mail containing malware-laden compact discs (CDs). Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Social Engineering Government Advertising

New Cyber Attack Campaign Leverages the COVID-19 Infodemic

Security Affairs

FEBRUARY 26, 2020

Researchers from Cybaze Yoroi ZLab have spotted a new campaign exploiting the interest in coronavirus (COVID-19) evolution to spread malware. The proof is the leverage of the current physical threat, the CoronaVirus (COVID-19), as a social engineering trick to infect the cyber world. Introduction. Technical Analysis.

Cyber Attacks

Cyber Attacks Malware Social Engineering Advertising

Hackers are targeting teleworkers with vishing campaign, CISA and FBI warn

Security Affairs

AUGUST 21, 2020

Voice phishing is a form of criminal phone fraud, using social engineering over the telephone system to gain access to private personal and financial information for the purpose of financial reward. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering VPN Phishing Authentication

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

Security Affairs

MARCH 10, 2020

In human-operated ransomware attack scenario, attackers use stolen credentials, exploit misconfiguration and vulnerabilities to access target networks, attempt to escalate privileges and move laterally, and deliver malware and exfiltrate data. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Cybercrime Social Engineering Banking

Signed Malspam campaigns hit Europeans with Multi-Stage JasperLoader

Security Affairs

APRIL 28, 2019

Threat actors leverage a multi-stage malware loader tracked as JasperLoader in the malspam campaigns over the past few months. The JasperLoader was observed while distributing malware to targets from Central Europe, most of them in Italy and Germany. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Social Engineering Banking Advertising

tRat is a new modular RAT used by the threat actor TA505

Security Affairs

NOVEMBER 16, 2018

The TA505 operates on a large scale, it was behind other major campaigns leveraging the Necurs botnet to deliver other malware, including the Locky ransomware , the Jaff ransomware , and the Dridex banking Trojan. Hackers used the tRat malware to target users at commercial banking institutions. Pierluigi Paganini.

Malware

Malware Social Engineering Banking Advertising

Brazilian trojan banker is targeting Portuguese users using browser overlay

Security Affairs

MAY 7, 2020

The modus operandi of this piece of malware is not new in Portugal. At least since the year of 2014 that new variants have been observed, with minor changes, and with the objective of collecting bank details of the victims. When malware initiates, it requests Google Drive documents for details on the C2’s IP address.

Banking

Banking Malware Phishing Advertising

IDF soldiers tricked into installing malicious apps by Hamas operatives posing as attractive women

Security Affairs

FEBRUARY 17, 2020

Hackers infected dozens of soldiers in recent months, but IDF declared that it has detected the attack, locked out the malware and took down attackers’ infrastructure. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Media Advertising Spyware

Reading the ENISA Threat Landscape Report 2018

Security Affairs

JANUARY 30, 2019

Nation-state hacking reduced the use of complex malware and appears to go towards low profile social engineering attacks. The main trends emerged in the 2018’s cyberthreat landscape are: Mail and phishing messages have become the primary malware infection vector. ” reads the ENISA Threat Landscape Report 2018.

Cyber threats

Cyber threats IoT Social Engineering Advertising

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Social Engineering Hacking Advertising

Emotet is back, it spreads reusing stolen email content

Security Affairs

SEPTEMBER 19, 2019

Emotet is back, its operators leverage a recently introduced spear-phishing technique to deliver their malware, they are hijacking legitimate email conversations. The operators are hijacking legitimate email threads as part of a social engineering attack. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Malware Advertising Engineering

New PyLocky Ransomware stands out for anti-machine learning capability

Security Affairs

SEPTEMBER 12, 2018

Researchers at Trend Micro have detected a new ransomware family, dubbed PyLocky, that was used in attacks between July and August, the malware was posing as the Locky ransomware using its ransom note. The PyLocky malware was distributed via spam emails most of which targeted European countries, particularly France.

Ransomware

Ransomware Encryption Malware Social Engineering

350 million decrypted email addresses left exposed on an unsecured server

Security Affairs

AUGUST 27, 2020

They can then conduct elaborate phishing and social engineering attacks to gain access to the victims’ accounts on other digital services such as entertainment and shopping platforms or even online banking. Clicking on suspicious messages or any links therein is a risk that may result in your computer being infected with malware.

Social Engineering

Social Engineering Passwords Marketing Phishing

Security Affairs newsletter Round 291

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Data breaches

Data breaches Social Engineering Ransomware Malware

A flaw in Rockwell Controller allows attackers to redirect users to malicious Sites

Security Affairs

APRIL 25, 2019

. “An open redirect vulnerability could allow a remote unauthenticated attacker to input a malicious link to redirect users to a malicious site that could run or download arbitrary malware on the user’s machine.” This malicious website could potentially run or download arbitrary malware on the user’s machine.

Firmware

Firmware Social Engineering Advertising Malware

Dutch police arrested the author of Dryad and Rubella Macro Builders

Security Affairs

JULY 19, 2019

He is suspected of large-scale production and selling of malware.” “The young man offered programs with names like Rubella, Cetan and Dryad, enabling the buyer to include secret code or malware in amongst others Word or Excel files.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Social Engineering Advertising Antivirus

Lyceum APT made the headlines with attacks in Middle East

Security Affairs

AUGUST 27, 2019

Using compromised accounts, the threat actors send spearphishing emails with malicious Excel attachments to deliver the DanBot malware, which subsequently deploys post-intrusion tools.” The threat actors carried out spearphishing attacks using weaponized Excel attachments to deliver the DanBot malware. Pierluigi Paganini.

DNS

DNS Passwords Penetration Testing Social Engineering

Microsoft issues guidance to defend Exchange servers under attack

Security Affairs

JUNE 25, 2020

There are two primary techniques to target Exchange servers; the most common scenario sees attackers launching social engineering or drive-by download attacks targeting endpoints to steal credentials and move laterally until they gain access to an Exchange server. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Advertising Engineering Authentication

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

U.S. Indicts North Korean Hackers in Theft of $200 Million

Trending Sources

New Coronavirus-themed malspam campaign delivers FormBook Malware

Russia-Linked Turla APT uses new malware in watering hole attacks

Privacy Roundup: Week 3 of Year 2025

Crooks spread malware via pirated movies during COVID-19 outbreak

Which was the most common threat to macOS devices in 2019? Shlayer malware

ZINC Hackers Leverage Open-source Software to Lure IT Pros

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

Cerberus, a new banking Trojan available as malware-as-a-service in the underground

New TA2101 threat actor poses as government agencies to distribute malware

Beware: Fake IRS tax email delivers Emotet malware

The return of the AdvisorsBot malware

Hackers use overlay screens on legitimate sites to steal Outlook credentials

Anubis II – malware and afterlife

Ex-NASA contractor pleaded guilty for cyberstalking crimes

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Over 3,000 Android Malware spotted using unsupported/unknown compression methods to avoid detection

Zeus Sphinx spam campaign attempt to exploit Coronavirus outbreak

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Return of the MINEBRIDGE RAT With New TTPs and Social Engineering Lures

North Korea’s Lazarus compromised dozens of organizations in Israel

Emotet spam uses unconventional IP address formats to evade detection

Experts analyzed the distribution technique used in a recent Emotet campaign

The Muncy malware is on the rise

U.S. taxpayers hit by a phishing campaign delivering the Amadey bot

Mysterious snail mail from China sent to US agencies includes Malware-Laden CD

New Cyber Attack Campaign Leverages the COVID-19 Infodemic

Hackers are targeting teleworkers with vishing campaign, CISA and FBI warn

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

Signed Malspam campaigns hit Europeans with Multi-Stage JasperLoader

tRat is a new modular RAT used by the threat actor TA505

Brazilian trojan banker is targeting Portuguese users using browser overlay

IDF soldiers tricked into installing malicious apps by Hamas operatives posing as attractive women

Reading the ENISA Threat Landscape Report 2018

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Emotet is back, it spreads reusing stolen email content

New PyLocky Ransomware stands out for anti-machine learning capability

350 million decrypted email addresses left exposed on an unsecured server

Security Affairs newsletter Round 291

A flaw in Rockwell Controller allows attackers to redirect users to malicious Sites

Dutch police arrested the author of Dryad and Rubella Macro Builders

Lyceum APT made the headlines with attacks in Middle East

Microsoft issues guidance to defend Exchange servers under attack

Stay Connected