SecureList

OCTOBER 20, 2021

Back in 2016, the primary focus of our expert was on major cybergangs that targeted financial institutions, banks in particular. This browser attack chain, popular in 2016, is no longer possible. To make matters worse, with the development of penetration-testing tools and services, the dark market saw the rise of new malicious tools.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration 116

System Administration Penetration Testing Malware Banking 116

Security Affairs

APRIL 23, 2019

Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak. Starting from 2016 the group developed a new custom malware using Cobalt Strike, a legitimate penetration testing framework. Hladyr is suspected to be a system administrator for the group.

Malware 72

Malware Penetration Testing Banking System Administration 72

Security Affairs

APRIL 23, 2019

Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak. Starting from 2016 the group developed a new custom malware using Cobalt Strike, a legitimate penetration testing framework. Hladyr is suspected to be a system administrator for the group.

Malware 53

Malware Penetration Testing Banking System Administration 53

Security Affairs

APRIL 1, 2019

But if we go on the Akamai blog we can still find a reference to Elknot posted on April 4, 2016 on a topic referred to “ BillGates ”, another DDoS malware whose “ attack vectors available within the toolkit include: ICMP flood, TCP flood, UDP flood, SYN flood, HTTP Flood (Layer7) and DNS reflection floods. O"]); // for persistence.

DDOS 84

DDOS Malware Encryption Penetration Testing 84

eSecurity Planet

DECEMBER 3, 2021

Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Through tenures at Citrix, HP, and Bugcrowd, Jason Haddix offers his expertise in the areas of penetration testing , web application testing, static analysis, and more. Denial-of-Suez attack.

Accountability 134

Accountability Cybersecurity Penetration Testing InfoSec 134

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat.

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40