Security Affairs

JUNE 20, 2022

The malware was first spotted in 2019 by security experts at Kaspersky, the name BRAT comes from ‘Brazilian RAT Android,’ because at the time it was used to spy on Brazilian users. These two permissions allows the operators to receive and read the victim’s sms while performing a phishing attack and takeover the victims’ account.

Malware 97

Malware Banking Antivirus Phishing 97

Security Affairs

JUNE 17, 2021

” The SMOKEDHAM backdoor was associated by FireEye to the activity of the UNC2465 group that dates back to at least April 2019 and is considered a DARKSIDE RaaS affiliate. Figure 2 shows an image of the download page used for SmartPSS software.” ” concludes the report. ” concludes the report.

Cybercrime 105

Cybercrime Ransomware Antivirus Software 105

Security Affairs

MARCH 18, 2023

” The Lockbit gang has been active since at least 2019 and today it is one of the most active ransomware groups offering a Ransomware-as-a-Service (RaaS) model. ransomware include remote desktop protocol (RDP) exploitation, drive-by compromise, phishing campaigns, abuse of valid accounts, and exploitation of public-facing applications.

Ransomware 82

Ransomware Penetration Testing Encryption Accountability 82

Security Affairs

JULY 9, 2019

See how #MicrosoftDefenderATP next-gen protection defeated the #fileless attack: [link] — Microsoft Security Intelligence (@MsftSecIntel) July 8, 2019. The malware is able to log the users’ keystrokes, collect information through hooking, access clipboard content, and monitor the keystate.

Antivirus 73

Antivirus Malware Advertising Security Intelligence 73

Security Affairs

FEBRUARY 14, 2020

US agencies also updated information included in a MARs report on the HOPLIGHT proxy-based backdoor trojan that was first analyzed in April 2019. This malware is currently used for phishing & remote access by #DPRK cyber actors to conduct illegal activity, steal funds & evade sanctions.

Malware 115

Malware Passwords Advertising Antivirus 115

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. conduct employee phishing tests. conduct employee phishing tests. Between 2015 and 2019, the largest-known individual ransom demand was $15 million.

Energy and Utilities 122

Energy and Utilities Ransomware Banking Hacking 122

Security Affairs

MARCH 2, 2019

In February 2019, SI-LAB captured multiple samples of phishing campaigns using an Office Excel document carrying a malicious Excel 4.0 This technology is stored in the Workbook OLE stream in Excel 97-2003 format which makes it very difficult to detect and parse by antivirus (AV) engines. Technical Analysis.

Malware 85

Malware Antivirus Technology Phishing 85

Security Affairs

DECEMBER 29, 2019

New trojan called ‘Lampion’ has spread using template emails from the Portuguese Government Finance & Tax during the last days of 2019. Last days of 2019 were the perfect time to spread phishing campaigns using email templates based on the Portuguese Government Finance & Tax. The file “ FacturaNovembro-4492154-2019-10_8.vbs

Malware 96

Malware Internet Internet Antivirus 96

The Last Watchdog

JUNE 21, 2020

The logic of the raid mainly comes down to using unsecured RDP ports or spear-phishing to infiltrate networks and gain a foothold in them. In November 2019, the criminals behind a ransomware species called Maze started a new trend that is currently gaining momentum on the dark web.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

MAY 7, 2020

One of the last occurrences was last December 2019, where the Lampion trojan operated in a very similar way, changing only the way the malware was distributed (via AWS S3 buckets and with the first stage encoded in a highly obfuscated VBS file). One of the files was a DLL that exported functions to capture home banking credentials.

Banking 111

Banking Malware Phishing Social Engineering 111

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing 105

Phishing Malware Spyware DDOS 105

Spinone

NOVEMBER 21, 2019

“Cyber Security is so much more than a matter of IT.” ” ― Stephane Nappo The amount of compromised data in August 2019 composed 114,686,290 breached records. Given that phishing accounts for 90% of data breaches , this simulation must be a part of every company’s security education.

Social Engineering 40

Social Engineering Accountability Phishing Cybersecurity 40

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. lazydocker : A simple terminal UI for both docker and docker-compose : [link] pic.twitter.com/HsK17rzg8m — Binni Shah (@binitamshah) July 1, 2019. Graham Cluley | @gcluley.

Accountability 134

Accountability Cybersecurity Penetration Testing InfoSec 134

Security Affairs

SEPTEMBER 7, 2020

Security experts from NVISO Labs recently spotted the activity of a new malware gang, tracked as Epic Manchego, that is actively targeting companies across the world with phishing emails since June. The phishing messages carry weaponized Excel documents that are able to bypass security checks and that had low detection rates.

Cybercrime 96

Cybercrime Phishing Advertising Antivirus 96

Security Affairs

JULY 8, 2020

Turchin obtained credentials to target networks by launching spear-phishing attacks and brute-forcing the passwords of remote desktop servers exposed online. The name Fxmsp refers a high-profile Russian- and English-speaking hacking group focused on breaching high-profile private corporate and government information.

Hacking 73

Hacking Antivirus Advertising Cybercrime 73

The Last Watchdog

FEBRUARY 28, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Cyber threats 113

Cyber threats Computers and Electronics Adware Spyware 113

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The campaigns were classified as either phishing or malware. Phishing and Malware Q3 2020. From Figure 2, January presented a total of 15 phishing campaigns, 29 in February and 46 during March.

Threat Reports 83

Threat Reports Phishing Malware Banking 83

SecureList

APRIL 24, 2023

Operators routinely mix and match the various families, trying to deploy tools (often repeatedly) with little regard for stealth until one doesn’t get caught by antivirus software. As a result, we (still) believe with high confidence that TunnusSched and KopiLuwak are both part of similar toolsets , starting from 2019 at the latest.

Malware 90

Malware DNS Government Software 90

CyberSecurity Insiders

JANUARY 31, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Malware 107

Malware Computers and Electronics Adware Spyware 107