SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. For instance, malicious spam campaigns targeting organizations grew 10-fold in April 2022, spreading Qbot and Emotet malware.

Banking 79

Banking Phishing Cryptocurrency Mobile 79

CyberSecurity Insiders

MARCH 23, 2023

AT&T Alien Labs researchers have discovered a new variant of BlackGuard stealer in the wild, infecting using spear phishing attacks. The malware evolved since its previous variant and now arrives with new capabilities. The malware can hijack crypto wallets copied to clipboard. Figure 2) Figure 2. Figure 3) Figure 3.

Malware 121

Malware Cryptocurrency Passwords Media 121

Security Affairs

JULY 30, 2020

The attackers sent out spear-phishing emails using boobytrapped documents leveraging the fake job offer as bait. Threat actors behind this campaign are utilizing compromised infrastructure from multiple European countries to host their C2 infrastructure and distribute the malware to the targets.

Advertising 112

Advertising Data collection Malware Phishing 112

SecureList

OCTOBER 7, 2022

Using LOLBINS, common legitimate pentesting tools, and fileless malware; misleading security researchers by placing false flags—these and other anti-forensic tricks often make threat attribution a matter of luck. The malware spreads through spear-phishing emails with a malicious Microsoft Office document as attachment.

Malware 143

Malware Computers and Electronics Telecommunications Encryption 143

Security Affairs

DECEMBER 19, 2018

Experts discovered a new variant of the Zebrocy malware that was written using the Go programming language. Researchers analyzed the first-stage malware in April and observed that it was used in numerous attacks in October and November. Most notably, the author name Joohn was used repeatedly in each delivery document.”

Malware 106

Malware Advertising Data collection Phishing 106

Security Affairs

NOVEMBER 15, 2018

Of course, the CBR does not have anything to do with the phishing campaign – the hackers faked the sender’s address. The documents in question were supposedly contained in the zipped files attached, however by uncompressing these files users downloaded Silence.Downloader – the tool used by Silence hackers. October attack: MoneyTaker .

Banking 111

Banking Computers and Electronics Phishing Cybercrime 111

Security Affairs

MAY 27, 2020

The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks. This piece of malware includes improvements in the way it is operating. The attached file is an HTML document that downloads the Grandoreiro’s 1st stage – a VBScript file (VBS). Technical Analysis. 100:51224/$rdgate?

Malware 79

Malware Banking Advertising Data collection 79

Malwarebytes

JANUARY 9, 2023

Digging further into the skimmer's infrastructure on Russian-based hosting provider DDoS-Guard, we came across a digital crime haven for cryptocurrency scams, Bitcoin mixers, malware distribution sites and much more. In the next section, we will show exactly what happens during this process of data collection and exfiltration.

DDOS 96

DDOS Scams Cryptocurrency Phishing 96

eSecurity Planet

APRIL 23, 2021

Endpoints are the most common entry point for malware and other malicious attackers, and protecting them is more important than ever with the boom in remote work due to the COVID-19 pandemic. Endpoint detection and response (EDR) is a vital tool for creating an effective security infrastructure for your organization. About SentinelOne.

Threat Detection 57

Threat Detection Data collection IoT Malware 57

SecureList

SEPTEMBER 6, 2022

In this report, we provide the latest statistics on cyberthreats to gamers, as well as detailed information on the most widespread and dangerous types of malware that players must be aware of. As the mobile gaming market continues to grow, we analyzed KSN data specifically on mobile threats. Methodology. Key findings. Grand Theft Auto.

Mobile 109

Mobile Passwords Software Accountability 109

Cisco Security

JUNE 15, 2021

The training and documentation resources of DevNet remain available. Radio frequency (RF) network and device data collected by Bastille Networks are available in SecureX threat response as an integrated source. Vade Secure’s IsItPhishing API provides a quick way to lookup a URL to determine if it is phishing.

Firewall 93

Firewall Data collection Education Malware 93

SecureList

MAY 28, 2024

According to 2023 statistics , only one in four affected organizations identified an incident as a result of detecting suspicious activity (launch of hacker tools, malware, network scanners, etc.) in their infrastructure, while the rest discovered they had been infiltrated via a third party only after data leakage or encryption.

VPN 79

VPN Accountability Passwords Antivirus 79

Security Affairs

OCTOBER 27, 2022

That includes documents with corporate and legal information about specific businesses or individuals. Either way, even if all of the data was essential, that doesn’t make it less sensitive if leaked. Cases like these raise questions about corporate data collection practices.

IoT 118

IoT Engineering Passwords Media 118

Security Boulevard

APRIL 18, 2022

These are living documents and should be treated as such. These typically include phishing, malware attacks/compromised devices, ransomware, DDoS, unauthorized account creation, and network security rule changes. For a malware attack, maybe it’s checking the email gateway for a phishing email that arrived in the user’s inbox.

Technology 52

Technology Marketing Phishing DNS 52

Security Affairs

NOVEMBER 14, 2021

The Threat Report Portugal: Q3 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q3, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 103

Threat Reports Phishing Malware Banking 103

Security Affairs

JULY 4, 2022

The Threat Report Portugal: Q2 2022 compiles data collected on the malicious campaigns that occurred from March to June, Q2, 2022. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. in Q1 2022.

Threat Reports 97

Threat Reports Phishing Banking Malware 97

Security Affairs

APRIL 6, 2023

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. The Portuguese Abuse Open Feed 0xSI_f33d is an open-sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. in Q2 2022.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

Security Affairs

JULY 22, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from April to June, Q2, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 116

Threat Reports Phishing Malware Banking 116

Malwarebytes

APRIL 10, 2024

Digital security is about so much more than malware. When I started Malwarebytes more than 16 years ago, malware was the primary security concern—the annoying pop-ups, the fast-spreading viruses, the catastrophic worms—and throughout our company’s history, Malwarebytes routinely excelled against this threat. It was our attitude.

Data breaches 83

Data breaches Passwords Banking Malware 83

Security Affairs

AUGUST 14, 2020

The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 143

Threat Reports Phishing Banking Malware 143

Security Boulevard

MARCH 31, 2022

RedLine Password Theft Malware. The RedLine password theft malware is a hot topic this month with Microsoft’s employee compromise. RedLine Malware-as-a-Service. The first mention of this malware appears to be in early 2020 , when multiple phishing campaigns cast a wide net over thousands of users, offering RedLine en masse.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

Security Affairs

MAY 2, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021. Threat Report Portugal Q1 2021: Phishing and malware by numbers. The submissions were classified as either phishing or malware. Phishing and Malware Q1 2021.

Threat Reports 103

Threat Reports Phishing Malware Data collection 103

SecureList

JULY 27, 2023

The most remarkable findings Early in June, we issued an early warning of a long-standing campaign that we track under the name Operation Triangulation , involving a previously unknown iOS malware platform distributed via zero-click iMessage exploits. Several tools were used to gather documents.

Malware 88

Malware Government Phishing Social Engineering 88

Malwarebytes

JUNE 30, 2022

The popular malware Raccoon stealer, which suspended operations after a developer allegedly died in the Ukraine invasion, has returned. Raccoon stealer is malware as a service, with the developers selling it to would-be users. If files end up on malware scanning services, the malware authors know exactly who the leak has come from.

Cryptocurrency 92

Cryptocurrency Malware Data collection Passwords 92

Security Affairs

AUGUST 2, 2019

Experts warn of a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. Security experts at Proofpoint uncovered a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. nceess [. ] Nceess [. ] file with one export?function?modified

Phishing 89

Phishing Malware Advertising Engineering 89

Security Affairs

JANUARY 26, 2021

Threat Report Portugal Q4 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 127

Threat Reports Phishing Malware Banking 127

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is a novel open sharing database with the ability to collect indicators from multiple sources, developed by Segurança-Informática. The campaigns were classified as either phishing or malware.

Threat Reports 114

Threat Reports Phishing Banking Malware 114

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 98

Threat Reports Phishing Banking Malware 98

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 85

Threat Reports Phishing Malware Banking 85

SiteLock

AUGUST 27, 2021

Seems like a nasty piece of malware that had managed to get past security encrypted all the documents so that they were no longer accessible. Hackers who get email addresses will often launch phishing attacks, sending out fake emails pretending to be the breached company or a law firm representing a class-action lawsuit.

Identity Theft 52

Identity Theft Accountability Data collection Firewall 52

eSecurity Planet

OCTOBER 20, 2023

Compliance and Audit Tools: Compliance and audit tools like GRC assist companies in adhering to applicable rules and industry standards by ensuring that security policies are followed and compliance is audited and documented.

Backups 120

Backups Firewall Encryption Architecture 120

Cisco Security

AUGUST 26, 2021

Best of all, there is no incremental cost based on the volume of data collected. “Terraform Cisco ASA Provider” developed by HashiCorp has been tested, validated and documented. Data includes RF Device location information, RF Device packet information, RF Network connectivity. Read more here. Read more here.

Technology 111

Technology Firewall VPN Authentication 111

ForAllSecure

NOVEMBER 18, 2021

Let's say phishing campaigns like very compelling phishing campaigns, targeted ones. Such as training systems to automatically detect malware. So if somebody steals your band, and puts it on his document send a kid to you because you don't have to see an EKG is that person. The band is tied to the user.

Hacking 52

Hacking Authentication Artificial Intelligence Technology 52

SecureList

NOVEMBER 14, 2023

The rise of destructive attacks In December of last year, shortly after we released our predictions for 2023, Russian government agencies were reported to have been targeted by a data wiper called CryWiper. The malware posed as ransomware, demanding money from the victims for “decrypting” their data.

Hacking 116

Hacking Energy and Utilities Media Malware 116