Security Affairs

JULY 30, 2018

A new sophisticated version of the AZORult Spyware was spotted in the wild, it was involved in a large email campaign on July 18. Malware researchers at Proofpoint spotted a new version of the AZORult Spyware in the wild, it was involved in a large email campaign on July 18, just 24 hours it appeared in cybercrime forums on the Dark Web.

Spyware 45

Spyware Cryptocurrency Passwords Malware 45

Security Affairs

NOVEMBER 29, 2019

A successful new operation was announced by Europol, it announced to have dismantled the global organized cybercrime ring behind Imminent Monitor RAT. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime 104

Cybercrime Advertising Spyware Hacking 104

Security Affairs

SEPTEMBER 18, 2020

Ransomware , the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed by Group-IB’s Computer Emergency Response Team (CERT-GIB) contained this kind of malware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 101

Phishing Ransomware Spyware Banking 101

Security Affairs

APRIL 5, 2019

A few days ago, the researchers of ZLab Yoroi-Cybaze dissected another attack wave of the infamous Ursnif malware, also known as Gozi ISFB , an offspring of the original Gozi which source code was leaked in 2014. Ursnif/Gozi is active from over a decade and was one of the most active malware listed in 2017 and 2018.

Banking 82

Banking Malware Cryptocurrency Advertising 82

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 187

Cybercrime Phishing Banking Malware 187

Security Affairs

NOVEMBER 27, 2018

sLoad is a sophisticated script, used in the past to deliver different types of malware such as the dreaded “ Ramnit banker”. Technical details, including IoCs and Yara Rules, about the sLoad malware are available on the Yoroi blog. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Spyware 86

Spyware DNS Advertising Malware 86

Krebs on Security

APRIL 2, 2019

Canadian police last week raided the residence of a Toronto software developer behind “ Orcus RAT ,” a product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. An advertisement for Orcus RAT.

Advertising 226

Advertising Malware Marketing Software 226

SecureList

NOVEMBER 1, 2022

Since the malware in this incident was compiled on April 15, 2021, and compilation dates are the same for all known samples, this incident is likely to be the first involving Maui ransomware. This report included technical details of malware used in the campaign, such as Ecipekac, SodaMaster, P8RAT, FYAnti and QuasarRAT.

Malware 142

Malware Ransomware Spyware Encryption 142

Security Affairs

DECEMBER 11, 2018

According to Group-IB experts, cyber criminals stole user accounts’ data using special spyware – form grabbers, keyloggers, such as Pony Formgrabber, AZORult and Qbot ( Qakbot ). The infection came from a malware included as an email attachment disguised as a legitimate file or archive. Pierluigi Paganini.

Government 89

Government Cybercrime Accountability Advertising 89

Security Affairs

MARCH 5, 2020

In the sector highlight included in the report, experts mention a strain of malware tracked as MESSAGETAP that was employed by Wicked Panda in its operations. The MESSAGETAP spyware was reportedly used by WICKED PANDA to monitor short message service (SMS) traffic from telecom networks. ” reads the report.

Telecommunications 85

Telecommunications Mobile Spyware Advertising 85

Security Affairs

SEPTEMBER 23, 2018

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms. NSO mobile Pegasus Spyware used in operations in 45 countries. Magecart cybercrime group stole customers credit cards from Newegg electronics retailer. Sustes Malware: CPU for Monero. Ngrok Mining Botnet. Pierluigi Paganini.

Computers and Electronics 53

Computers and Electronics Cryptocurrency Spyware Data breaches 53

Security Affairs

OCTOBER 2, 2018

Checkpoint experts discovered in the Dark Web an online builder, dubbed Gazorp, that allows crooks to create customized binaries for the Azorult malware. Gazorp is designed for building binaries of the popular malware, Azorult, an infostealer used for stealing user passwords, credit card information, ” states CheckPoint.

Malware 77

Malware Advertising Spyware Passwords 77

Security Affairs

NOVEMBER 17, 2019

TA505 Cybercrime targets system integrator companies. New TA2101 threat actor poses as government agencies to distribute malware. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS 50

DDOS Spyware Advertising Ransomware 50

Security Affairs

APRIL 21, 2019

Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading. Analyzing OilRigs malware that uses DNS Tunneling. Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison. Marcus Hutchins pleads guilty to two counts of banking malware creation. Code execution – Evernote. Pierluigi Paganini.

Computers and Electronics 59

Computers and Electronics Spyware Data breaches Advertising 59

Security Affairs

OCTOBER 27, 2019

TA505 cybercrime group use SDBbot RAT in recent campaigns. malware to control Microsoft SQL Servers. Trend Micro Anti-Threat Toolkit could be used to run malware on Win PCs. Swedish Government grants police the use of spyware against violent crime suspects. Fake UpdraftPlus WordPress Plugins used to backdoor sites.

Spyware 41

Spyware Advertising Hacking DDOS 41

SecureList

JULY 27, 2023

The most remarkable findings Early in June, we issued an early warning of a long-standing campaign that we track under the name Operation Triangulation , involving a previously unknown iOS malware platform distributed via zero-click iMessage exploits. Kaspersky employees were also affected by this threat.

Malware 88

Malware Government Phishing Social Engineering 88

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware 142

Malware Spyware Government Social Engineering 142

Security Affairs

AUGUST 4, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Paper Copy.

Cryptocurrency 40

Cryptocurrency Data breaches Spyware Surveillance 40

Security Affairs

MAY 8, 2020

Malware delivery: what’s on the menu? H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases.

Phishing 55

Phishing Spyware Banking Malware 55

Security Affairs

APRIL 8, 2019

This data comes not only from the analysis of underground forums and phishing websites, but also from the analysis of cybercriminals’ infrastructure (including but not limited to C&Cs) and malware disassembling. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Map of Middle-Eastern Countries.

Artificial Intelligence 60

Artificial Intelligence Government Banking Advertising 60

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Cryptomining Campaign involves Golang malware to target Linux servers. Godlua backdoor, the first malware that abuses the DNS over HTTPS (DoH). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Scams 47

Scams Spyware DNS Advertising 47

Security Affairs

SEPTEMBER 2, 2018

. · BusyGasper spyware remained undetected for two years while spying Russians. · Federal prosecutors indicted a 20-year-old man who built the Satori botnet. · Hacking The Hacker. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. Security Affairs – Newsletter ).

Spyware 41

Spyware Banking Data breaches Mobile 41

Security Affairs

MARCH 14, 2019

We dubbed this JS Sniffer family GMO because the malware uses gmo[.]li JS Sniffers is a type of malware that remains poorly researched. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. li host.”.

eCommerce 83

eCommerce Marketing Data breaches Advertising 83

Security Affairs

MARCH 19, 2019

New malware in gang’s arsenal. In January 2019, Group-IB specialists obtained information about previously unknown malware sample used in this attack, dubbed by Group-IB RATv3.ps The malware spreader as part of this campaign was primarily aimed at collecting information from the victim’s computer according to various commands.

Banking 76

Banking Government Passwords Marketing 76