Collaborate Disseminate
I am quite impressed with the level of Social Engineering with this malware delivery Malspam campaign. With Brexit fast approaching and the likelihood of no deal between UK and Europe, many companies are increasingly trying to build a relationship wit… Continue reading Azorult via fake Chinese Government New Import Export Regulations
Starting Yesterday evening and continuing steadily all day so far today, we saw what was supposed to be a malspam campaign with a lure of court summonses. None of the links I followed actually delivered any malware but did instead lead to a zip file t… Continue reading Fake Court summonses, Judgements, Subpoenas delivering malware
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of ” Confirm account status ” pretends to come from TD Bank but actually come… Continue reading Fake TD Bank Confirm account status delivers Trickbot
We never fail to be astonished by the ingenuity and attempts from malware bad actors to get their malware delivered to their intended victims. However in many cases, like this one, their attempts spectacularly backfire where such a tiny, minuscule numb… Continue reading Agent Tesla keylogger delivered inside a Power ISO .daa archive
We have been seeing a lot of formbook malware recently. This campaign is very similar to all the others we frequently see. The only reason for mentioning it is that it is very unusual for malware campaigns to take place over a weekend. Most of this typ… Continue reading Fake Quotation request delivers Formbook
A slightly different malware campaign that I have never seen hitting the UK previously. The email pretends to be about a reward for using Blockchain and you need to install a new authentication method. The entire email screams scam, is written in quite… Continue reading Fake Blockchain authentication update delivers Dark Comet RAT
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “RE: Instructions de transfert ” pretends to come from RBC Royal Bank of C… Continue reading Fake Royal Bank of Canada RE: Instructions de transfert delivers Trickbot
Yet another Lokibot campaign. This time coming via a Fake DHL delivery failed email. We frequently see comments saying ” how can anybody fall for this sort of scam”. Well it is extremely easy! It only needs a combination of very plausible c… Continue reading Lokibot via Fake DHL delivery message using ISO attachments
It’s Friday afternoon at the end of a busy week for many people and we get yet another Gandcrab ransomware campaign. This campaign is slightly different to previous versions that I have seen. We generally see Gandcrab delivered via Office ( norma… Continue reading Gandcrab via fake invoice using password protected zip files
This is just a very quick update about the sextortion, blackmail, bomb threat, we will kill you spam campaigns that have plagued all of us for several months now. It is a bit complicated to follow, but hopefully it will shed some light on this campaign… Continue reading A very quick update on the sextortion spam campaigns