Banking, Information Security and Security Intelligence

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. The TA505 group was involved in campaigns aimed at distributing the Dridex banking Trojan, along with Locky , BitPaymer , Philadelphia , GlobeImposter , and Jaff ransomware families. states Microsoft. We strongly recommend patching.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Security Affairs

FEBRUARY 2, 2020

pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. Security experts from cyber-security firm Prevailion reported that TA505 has compromised more than 1,000 organizations.

Malware

Malware Security Intelligence Banking Phishing

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents.

Government

Government Banking Malware Advertising

HTML Smuggling technique used in phishing and malspam campaigns

Security Affairs

NOVEMBER 12, 2021

— Microsoft Security Intelligence (@MsftSecIntel) July 23, 2021. More recently, the HTML smuggling technique was used to deliver the banking Trojan Mekotio , as well as AsyncRAT/NJRAT and Trickbot. HTML smuggling is a highly evasive technique for malware delivery that leverages legitimate HTML5 and JavaScript features.

Phishing

Phishing Banking Firewall Passwords

Microsoft warns of attacks delivering FlawedAmmyy RAT directly in memory

Security Affairs

JUNE 24, 2019

pic.twitter.com/PQ2g7rvDQm — Microsoft Security Intelligence (@MsftSecIntel) June 21, 2019. — Microsoft Security Intelligence (@MsftSecIntel) June 21, 2019. The final payload is the remote access Trojan FlawedAmmyy,” reads a Tweet published by Microsoft Security Intelligence.

Security Intelligence

Security Intelligence Advertising Malware Banking

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

pic.twitter.com/POppQ51uMX — Microsoft Security Intelligence (@MsftSecIntel) September 22, 2020. The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Additional malware is downloaded and installed when running these macros. .

Malware

Malware Passwords Advertising Cybercrime

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). — Microsoft Security Intelligence (@MsftSecIntel) March 12, 2021. Microsoft protects against this threat known as Ransom:Win32/DoejoCrypt.A, and also as DearCry. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Cybercrime Authentication Hacking

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

link] — Microsoft Security Intelligence (@MsftSecIntel) October 12, 2020. According to the security firms that took part in the operation, the TrickBot botnet had infected more than one million devices at the time of its takedown. ” reads the post published by Microsoft.

Malware

Malware Banking Advertising Financial Services

10 Reasons to Trust Your Enterprise APIs

Cisco Security

AUGUST 30, 2021

Using this list as a backdrop the following best practices are presented as a call to action to help organizations take a proactive approach at addressing API security risk. Encrypt sensitive traffic using Transport Layer Security (TLS). See your logging documentation for more detailed information on how to log a given format.

Software

Software Authentication Risk Encryption

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

The targeted entities are law firms, banks, and strategic consultancies. Confirm that Microsoft Defender Antivirus is updated to security intelligence update 1.371.503.0 Microsoft reported Subzero attacks against Microsoft customers in Austria, the United Kingdom, and Panama. or later to detect the related indicators.

Surveillance

Surveillance Malware Authentication DNS

Hackers Also Have Financial Reporting And Quotas :)

Security Boulevard

JUNE 18, 2022

Chief Hacking Officer: Yevi, where are you at with London bank hack?”. Security kinda tough get inside.”. Security breaches cause foreseeable financial damage to the organization. In many cases, more significant than the amount spent on combined network security, cloud security, and artificial intelligence.

Hacking

Hacking CISO Cybersecurity Banking

Australian Govt agency ACSC warns of Emotet and BlueKeep attacks

Security Affairs

NOVEMBER 11, 2019

Read our latest blog w/ assist from @GossiTheDog & @MalwareTechBlog [link] — Microsoft Security Intelligence (@MsftSecIntel) November 7, 2019. The ACSC also warns about the Emotet threat, a banking trojan that has been active since 2014. Locate and patch exposed RDP services now.

Small Business

Small Business Malware Cryptocurrency Advertising

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. Cloud security success and choosing the right investments is all about having a clear understanding of threat types and their resulting damages.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Emotet operators are running Halloween-themed campaigns

Security Affairs

OCTOBER 31, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents.

Banking

Banking Malware Security Intelligence Advertising

Cyber Security Informer

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Trending Sources

CISA alert warns of Emotet attacks on US govt entities

HTML Smuggling technique used in phishing and malspam campaigns

Microsoft warns of attacks delivering FlawedAmmyy RAT directly in memory

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Microsoft partnered with other security firms to takedown TrickBot botnet

10 Reasons to Trust Your Enterprise APIs

European firm DSIRF behind the attacks with Subzero surveillance malware

Hackers Also Have Financial Reporting And Quotas :)

Australian Govt agency ACSC warns of Emotet and BlueKeep attacks

Cyber Security Awareness and Risk Management

Emotet operators are running Halloween-themed campaigns

Stay Connected