SecureList

DECEMBER 1, 2023

However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. Upon startup, this backdoor makes a type A DNS request for the <hex-encoded 20-byte string> u.fdmpkg[.]org Instead, it tried to exploit the CVE-2017-0199 vulnerability. org domain.

Malware 90

Malware Ransomware Encryption Energy and Utilities 90

eSecurity Planet

FEBRUARY 16, 2021

Install an antivirus solution that includes anti-adware capabilities. In 2017, more than 300,000 WordPress websites were affected by a malicious plugin that allowed an attacker to place embedded hidden links on victim websites. Additional features of botnets include spam, ad and click fraud, and spyware. Jump ahead: Adware.

Malware 105

Malware Adware Spyware Antivirus 105

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Firefox finally addressed the Antivirus software TLS Errors. US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw. Godlua backdoor, the first malware that abuses the DNS over HTTPS (DoH). LooCipher: The New Infernal Ransomware.

Scams 48

Scams Spyware DNS Advertising 48

SecureList

APRIL 27, 2021

Further investigation of the Sunburst backdoor revealed several features that overlap with a previously identified backdoor known as Kazuar , a.NET backdoor first reported in 2017 and tentatively linked to the Turla APT group. webshells and Exaramel implants. Other interesting discoveries.

Malware 137

Malware Spyware Government Social Engineering 137