Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is a novel open sharing database with the ability to collect indicators from multiple sources, developed by Segurança-Informática. The campaigns were classified as either phishing or malware.

Threat Reports 136

Threat Reports Phishing Malware Banking 136

Security Affairs

JANUARY 26, 2021

Threat Report Portugal Q4 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 139

Threat Reports Phishing Malware Banking 139

Security Affairs

JULY 22, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from April to June, Q2, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 128

Threat Reports Phishing Malware Banking 128

SecureList

DECEMBER 23, 2024

Victims get infected via phishing emails containing a malicious document that exploits a vulnerability in the formula editor ( CVE-2018-0802 ) to download and execute malware code. vbs VBShower Cleaner After the download is complete, the malware adds a registry key to auto-run the VBShower Launcher script.

Encryption 136

Encryption Penetration Testing Malware Phishing 136

Security Boulevard

MARCH 24, 2025

Android Apps Use Bluetooth and WiFi Scanning to Track Users Without GPS Cyber Insider Researchers found that 86% of apps they analyzed collect sensitive data, including location data stemming from scanning Wi-Fi network details, and collecting device identifiers. They also have appeared to partner with Proton.

Surveillance 75

Surveillance Telecommunications Data breaches Malware 75

Security Affairs

MAY 2, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021. Threat Report Portugal Q1 2021: Phishing and malware by numbers. The submissions were classified as either phishing or malware. Phishing and Malware Q1 2021.

Threat Reports 109

Threat Reports Phishing Malware Data collection 109

Security Affairs

NOVEMBER 14, 2021

The Threat Report Portugal: Q3 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q3, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 111

Threat Reports Phishing Malware Banking 111

SecureList

OCTOBER 18, 2023

In early September 2022, we discovered several new malware samples belonging to the MATA cluster. As we were collecting and analyzing the relevant telemetry data, we realized the campaign had been launched in mid-August 2022 and targeted over a dozen corporations in Eastern Europe from the oil and gas sector and defense industry.

Malware 143

Malware Phishing Internet Internet 143

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

Security Affairs

JULY 4, 2022

The Threat Report Portugal: Q2 2022 compiles data collected on the malicious campaigns that occurred from March to June, Q2, 2022. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. in Q1 2022.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

Security Affairs

APRIL 6, 2023

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. The Portuguese Abuse Open Feed 0xSI_f33d is an open-sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. in Q2 2022.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

Security Affairs

MAY 27, 2020

The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks. This piece of malware includes improvements in the way it is operating. The Grandoreiro malware has been distributed via malscan campaigns around the globe during Q2 2020. Technical Analysis. 100:51224/$rdgate?

Malware 107

Malware Banking Advertising Data collection 107

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches 129

Data breaches Banking Hacking Malware 129

Security Affairs

JULY 30, 2020

The attackers sent out spear-phishing emails using boobytrapped documents leveraging the fake job offer as bait. Threat actors behind this campaign are utilizing compromised infrastructure from multiple European countries to host their C2 infrastructure and distribute the malware to the targets.

Advertising 135

Advertising Data collection Malware Phishing 135

The Last Watchdog

MAY 11, 2021

The payload malware: Sunburst, a heavily-obfuscated backdoor. People tend to focus on the Sunburst malware , the actual backdoor that ended up in the affected update package,” Pericin told me. Out of this comes whitelists and blacklists on which malware filters are based. Granular scrutiny.

Software 202

Software Hacking Malware Engineering 202

Security Affairs

AUGUST 2, 2019

Experts warn of a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. Security experts at Proofpoint uncovered a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. nceess [. ] Nceess [. ] file with one export?function?modified

Phishing 103

Phishing Malware Advertising Engineering 103

Security Affairs

MARCH 17, 2021

. “While the initial vector for the infection is not entirely clear, the McAfee ATR team believes with a medium level of confidence that victims were lured to a domain under control of the threat actor, from which they were infected with malware which the threat actor leveraged to perform additional discovery and data collection.”

Malware 111

Malware Data collection Technology Phishing 111

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 92

Threat Reports Phishing Malware Banking 92

SecureList

AUGUST 8, 2022

The attackers penetrated the enterprise network using carefully crafted phishing emails, some of which use information that is specific to the organization under attack and is not publicly available. Microsoft Word documents attached to the phishing emails contained malicious code that exploits the CVE-2017-11882 vulnerability.

Malware 107

Malware Phishing Passwords Data collection 107

Security Boulevard

MARCH 17, 2025

Data Broker Brags About Having Highly Detailed Personal Information on Nearly All Internet Users Gizmodo An owner of a data broker business brags and showcases his company's ability to deliver "personalized messaging at scale." Of course, personalized in this context means leveraging extensive amounts of data collected on people.

Surveillance 59

Surveillance Data breaches Spyware Malware 59

Security Affairs

OCTOBER 27, 2022

Data collected by Microsoft Defender for Endpoint shows that nearly 3,000 devices in almost 1,000 organizations have seen at least one RaspberryRobin payload-related alert in the last 30 days. In some cases, the attackers delivered the Truebot malware between the Raspberry Robin infection and the Cobalt Strike deployment.

Ransomware 111

Ransomware Malware Data collection Encryption 111

Krebs on Security

DECEMBER 29, 2022

This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware. Food delivery service DoorDash discloses that a “sophisticated phishing attack” on a third-party vendor allowed attackers to gain access to some of DoorDash’s internal company tools.

Cryptocurrency 313

Cryptocurrency Cybercrime Computers and Electronics Scams 313

Security Affairs

MAY 23, 2024

However, the researchers determined that one of methods used by the threat actors to regaining access to the target organizations are spear-phishing emails. The experts observed multiple spear-phishing attempts between March and May 2023. However, the exact persistence mechanisms remain unclear due to insufficient forensic data.

Malware 135

Malware Accountability Phishing Data collection 135

eSecurity Planet

OCTOBER 10, 2024

With malware increasingly targeting macOS, many users wonder how to protect their devices best. The answer is simple: invest in the right anti-malware and anti-virus software designed specifically for Mac users in 2025. This guide will explore the essential tools to help you secure your Mac against malware threats.

Software 62

Software Malware Antivirus Spyware 62

SecureList

NOVEMBER 19, 2024

As shoppers seek the best deals in the run-up to major sales events like Black Friday, cybercriminals and fraudsters gear up to exploit this demand, attempting to steal personal data, funds, and spread malware through deceptive shopping lures. This report draws on data collected from January through October 2024.

Banking 103

Banking Phishing Scams Retail 103

SecureList

OCTOBER 7, 2022

Using LOLBINS, common legitimate pentesting tools, and fileless malware; misleading security researchers by placing false flags—these and other anti-forensic tricks often make threat attribution a matter of luck. The malware spreads through spear-phishing emails with a malicious Microsoft Office document as attachment.

Malware 145

Malware Computers and Electronics Telecommunications Encryption 145

eSecurity Planet

JULY 31, 2024

AV software blocks malware, EPP passively prevents threats, and EDR actively mitigates network attacks. Identifies and eliminates known malware. Limited to blocking, quarantining, and removing discovered malware. When threats circumvent EPP’s preventative procedures, EDR is frequently paired with EPP to control the damage.

Antivirus 117

Antivirus Threat Detection Malware Software 117

Security Affairs

DECEMBER 19, 2018

Experts discovered a new variant of the Zebrocy malware that was written using the Go programming language. Researchers analyzed the first-stage malware in April and observed that it was used in numerous attacks in October and November. The malware connects to the C2 through HTTP POST requests.

Malware 111

Malware Advertising Data collection Phishing 111

Security Affairs

NOVEMBER 15, 2018

Of course, the CBR does not have anything to do with the phishing campaign – the hackers faked the sender’s address. A spear-phishing campaign set up to look like it was carried out by the Central Bank is a relatively widespread vector of attack among cyber criminals; it has been used by groups such as Buhtrap, Anunak , Cobalt , and Lurk.

Banking 111

Banking Computers and Electronics Phishing Cybercrime 111

The Last Watchdog

JUNE 2, 2021

The amount of data in the world topped an astounding 59 zetabytes in 2020, much of it pooling in data lakes. We’ve barely scratched the surface of applying artificial intelligence and advanced data analytics to the raw data collecting in these gargantuan cloud-storage structures erected by Amazon, Microsoft and Google.

Encryption 176

Encryption Artificial Intelligence IoT Data collection 176

SecureList

SEPTEMBER 6, 2022

In this report, we provide the latest statistics on cyberthreats to gamers, as well as detailed information on the most widespread and dangerous types of malware that players must be aware of. As the mobile gaming market continues to grow, we analyzed KSN data specifically on mobile threats. Methodology. Key findings. Grand Theft Auto.

Mobile 135

Mobile Passwords Software Accountability 135

SiteLock

AUGUST 27, 2021

Short for “malicious software,” malware is a very common threat used to steal sensitive customer data, distribute spam, allow cybercriminals to access your site, and more. Your site may be removed from search engine results and flagged with a warning that turns visitors away if search engines find malware. Phishing schemes.

Small Business 98

Small Business Malware DDOS Engineering 98

Security Affairs

OCTOBER 15, 2018

Group-IB: The online market for counterfeit goods in Russia has reached $1,5 billion, while the number of phishing attacks has surpassed 1,200 daily. Fraudsters use various ways to deceive users: phishing websites, fake mobile apps, accounts and groups on social media. Phishing remains one of the most common online fraud.

Marketing 103

Marketing Media Phishing Engineering 103

Cisco Security

JUNE 15, 2021

Radio frequency (RF) network and device data collected by Bastille Networks are available in SecureX threat response as an integrated source. Vade Secure’s IsItPhishing API provides a quick way to lookup a URL to determine if it is phishing. Proactively analyze and investigate new malware threats as they emerge.

Firewall 132

Firewall Data collection Education Malware 132

Security Boulevard

MARCH 31, 2022

RedLine Password Theft Malware. The RedLine password theft malware is a hot topic this month with Microsoft’s employee compromise. RedLine Malware-as-a-Service. The first mention of this malware appears to be in early 2020 , when multiple phishing campaigns cast a wide net over thousands of users, offering RedLine en masse.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

eSecurity Planet

AUGUST 20, 2024

The company allegedly obtained this information from non-public sources without the consent of the person filing the complaint or the potentially billions of others affected by the data collection. Running outdated software increases the risk of being targeted by malware or other attacks.

Identity Theft 130

Identity Theft Data breaches Passwords Encryption 130

Thales Cloud Protection & Licensing

MAY 23, 2022

The software components at this level include the servers and databases at the core of the production workflow that feed data collected from field devices to higher-level business systems, or those operating in the cloud. Access management is an essential mitigation strategy.

Healthcare 126

Healthcare Ransomware Authentication Threat Reports 126