Year: 2019

Delaware, USA – March 7, 2019 – Another campaign spreading brute-force malware was observed in the wild by FortiGuard Labs. The StealthWorker malware targets Windows and Linux machines, as well as exfiltrates sensitive information from e-tail websites and also exploits a variety of vulnerabilities of CMSs, phpMyAdmin, Magento. The current StealthWorker campaign doesn’t resort to […]

Delaware, USA – March 6, 2019 – The new Ransomware-as-a-Service platform prepares to enter the game and is actively promoted both on the Darknet forums and through social networks. Initially, the attackers behind Jokeroo ransomware tried to present their creation as the newest version of GandCrab but soon abandoned this tactic. The platform is hidden […]

Delaware, USA – March 5, 2019 – More indisputable proof of the notorious Lazarus group being responsible for the ‘Operation Sharpshooter’ cyber espionage campaign in late 2018 has been published by McAfee. ‘Operation Sharpshooter’ targeted critical infrastructures, financial and governmental sectors worldwide but most notably in the US, Turkey, and Germany. The initial analysis revealed […]

Delaware, USA – March 4, 2019 – Only a month has passed since the last QBot malware distribution campaign (also known as QakBot banking trojan), and now its new modification attacks companies in Europe and the USA again. Security researchers at Varonis discovered a wave of phishing attacks using a new incarnation of the infamous […]

Delaware, USA – March 1, 2019 – Successful MageCart attacks attract an increasing number of cybercriminals, skilled enough to compromise a website and install a skimmer. In November, it was believed that seven different competing groups carried out attacks that remain undetected for months, and after security officers detect the compromise and remove malicious code, […]

Delaware, USA – February 28, 2019 – Adversaries exploit a Google Chrome vulnerability to collect system data for subsequent attacks. The developers promise to release an update to close the zero-day vulnerability in the built-in PDF viewer only at the end of April. EdgeSpot researchers found malicious documents that when opened in the browser send […]

Delaware, USA – February 27, 2019 – An unknown group of cybercriminals uses Polyglot images to redirect users to malicious websites. Devcon researchers have discovered a new malvertising campaign using a sophisticated technique similar to steganography. Unlike the latter, Polyglot images contain not only the payload but also a script for its execution. Cybercriminals behind […]

Delaware, USA – February 26, 2019 – Cybercriminals weaponized vulnerability in WinRAR in less than a week after its disclosure. Vulnerability CVE-2018-20250 affects all versions of the archiver up to 5.70 Beta 1, in which developers simply deleted the vulnerable library. With its help, adversaries can specify a folder for unpacking files, ignoring the folder […]

Delaware, USA – February 25, 2019 – A reputable logistics company’s brand name was noticed in a malspam campaign, SI-LAB researchers inform. In spite of the fact that DHL marketing name has been widely used in phishing campaigns to deliver plenty of malware strains, the recent Muncy seems to be successful worldwide deluding victims open […]

Delaware, USA – February 22, 2019 – Researchers at Deep Instinct discovered an active campaign infecting employees of organizations in the Middle East, Asia, and North America with Separ infostealer. The malware came on the radars of researchers about 14 months ago and did not attract much attention because of its simplicity, but this does […]