Year: 2019

Russian Banks Customers Become the Target of Redaman Trojan

Delaware, USA ā€“ January 24, 2019 ā€“ Financially motivated attackers are targeting victims in Russia this time, the Palo Alto threat intelligence team report. Redaman malware was spot being distributed in malspam attack during last four month of 2018. The emails delivering Redaman targeted recipients mostly with email addresses ending in .ru who conduct transactions […]

Read More
Anatova Ransomware Attacks Victims in the US and Western Europe

Delaware, USA ā€“ January 23, 2019 ā€“ Security researchers of McAfee Labs announced the discovery of a ransomware activity targeting users mainly in the United States and Western Europe. It was called Anatova, based on the name of the ransom message. Anatova is a 64bits application with the compile date of January, 1st, 2019, spread […]

Read More
DarkHydrus empowers RogueRobin to use Google Drive

Delaware, USA ā€“ January 22, 2019 ā€“ The Middle East region became the target of the recent attack by a new strain of RogueRobin Trojan that can use Google Drive to receive attackers’ commands. Cybersecurity experts from 360’s Threat Intelligence Center attributed this attack to the notorious DarkHydrus APT group which has already carried out […]

Read More
Renewed XBash Targets Servers Bypassing Cloud Security

Delaware, USA ā€“ January 21, 2019 ā€“ Cryptocurrency mining malware sustains efforts to be on the edge of the most distributed threats. Researchers from Palo Alto Networks analyzed a new strain of XBash malware that embodies features of ransomware, coinminers, botnets, and worms to affect Linux servers, with the new code being able to bypass […]

Read More
LoJax Campaign is Still Ongoing

Delaware, USA ā€“ January 18, 2019 ā€“ New research has shown that the LoJax infrastructure is still not disabled, and attacks using this malware have continued for at least two years. In early May 2018, it became known that the Fancy Bear APT group created an incredibly persistent malware based on the code of LoJack […]

Read More
Emotet Returns After Holiday Break

Delaware, USA ā€“ January 17, 2019 ā€“ After a short holiday rest, the Emotet returns to new attacks with refreshed features. The malware is distributed via email campaigns bringing new tricks. In current campaigns, the Emotet is delivered in two different ways. One version outspreads via a stream of emails in different languages informing about […]

Read More
The City of Del Rio, Texas Falls a Victim of Ransomware

Delaware, USA ā€“ January 16, 2019 ā€“ It’s not only cyber sec people who deal with malware attacks at governmental organizations and the consequences but also pin-striped masses whose routine turns upside down. Another ransomware disabled normal operations in the City of Del Rio, Texas. All the employees werenā€™t able either to log into the […]

Read More
“Love You” Spam Campaign Distributes Malware Cocktail

Delaware, USA ā€“ January 15, 2019 ā€“ Despite the fact that there is still a whole month before Valentineā€™s Day, adversaries are sending spam emails with unexpected content. Security researcher Brad Duncan published his findings related to the campaign spreading Ransomware, cryptocurrency miner and spambot bundle. First attacks of the “Love You” campaign carried by […]

Read More
ServHelper and FlawedGrace RAT Attack Finances

Delaware, USA ā€“ January 14, 2019 ā€“ Malware researchers from Proofpoint enounce about a new information-stealing campaign targeting the financial and retail sectors. New malware families giving the hackers RDP access to the compromised network and are distributed via phishing emails with MS Word, Publisher, and PDF files. In the monitored campaigns, adversaries used not […]

Read More
APT Group Uses DNS Hijacking to Steal Credentials

Delaware, USA ā€“ January 11, 2019 ā€“ FireEye researchers analyzed a surge in incidents related to DNS hijacking and discovered that an unidentified APT group is using a new intrusion technique. This group attacks the government and telecommunications sector in North America, Europe and the Middle East. The researchers believe that the attackers are linked […]

Read More