Collaborate Disseminate
Emotet has resurfaced after a five-month hiatus, with more than 250,000 malspam messages being sent to email recipients worldwide. Continue reading Emotet Returns in Malspam Attacks Dropping TrickBot, QakBot
Four sophisticated malware families are ramping up their techniques and actively spreading to new countries, including the U.S. Continue reading Brazil’s Banking Trojans Go Global
Brazilian President Jair Bolsonaro’s critics say he hasn’t taken the impact of the coronavirus seriously. The same can’t be said for Brazil’s cybercriminals. As deaths from the virus have surged past 66,000 in Brazil, scammers have set up new infrastructure to dupe people who are desperate for relief, and have set up bank accounts in their names. At a time when even more people in South America’s biggest country are glued to their phones or computers, Brazil’s already-flourishing cybercriminal economy has been busy. “Scam operations have been highly effective in Brazil, from the first announcement of the government assistance program,” Jefferson Macedo, managing consultant on IBM’s X-Force security team, told CyberScoop. IBM has uncovered nearly 700 malicious websites related to COVID-19, the disease caused by the virus, in recent months. The crooks are impersonating government apps used to sign up for financial relief and sending people a flurry of text […]
The post In Brazil, scammers see the coronavirus as a serious money-making opportunity appeared first on CyberScoop.
Continue reading In Brazil, scammers see the coronavirus as a serious money-making opportunity
The Cerberus malware can steal banking credentials, bypass security measures and access text messages. Continue reading Cerberus Banking Trojan Unleashed on Google Play
The malware has boosted its anti-detection capabilities in a new email campaign. Continue reading IcedID Banker is Back, Adding Steganography, COVID-19 Theme
The 12-year-old malware is still dangerous, sporting advanced evasion techniques. Continue reading Qbot Trojan Reappears to Go After U.S. Banking Customers
Malspam emails are claiming to deliver a survey on BLM — but in reality they deliver the infamous banking trojan. Continue reading Black Lives Matter Emails Deliver TrickBot Malware
The Covid-19 lockdown and stay-at-home orders have changed the way we work, shop and handle our finances. As mobile banking tools become a go-to alternative for customers who continue in the struggle of social distancing, the FBI anticipates a surge in… Continue reading Increased Use of Mobile Banking Apps May Lead to Cyber Attacks, FBI Warns
Hackers often plant their malicious software on computers in stages. One piece of code can be a foothold onto a network, another delivers the malware, and yet another executes it to steal or manipulate data. But looks can be deceiving. The same code used as a staging tool in one attack might be the tip of the spear in another. For targeted organizations, spotting the difference can mean saving your data. That’s the case with a malicious program that has been used in hacking attempts against multiple economic sectors in the U.S. and Germany in the last six months, according to research published Thursday by security company Cybereason. About 150 organizations in the financial, retail, manufacturing, and health care sectors have been targeted by the Valak malware since it emerged late last year, the researchers said. More than just a “loader” that delivers malicious code, Valak can also be used […]
The post ‘Valak’ gives crooks flexibility in multi-stage malware attacks appeared first on CyberScoop.
Continue reading ‘Valak’ gives crooks flexibility in multi-stage malware attacks
Over a decade since the infamous Zeus malware surfaced, scammers are still using variants of that code to try to steal data from banking customers on multiple continents. Since the beginning of the year, various criminal hacking groups have been using a descendant of Zeus in more than 100 phishing campaigns and some 700,000 emails against people in Australia, Canada, Germany, Poland, and the U.S., email security company Proofpoint said this week. Like countless other hackers around the world, they are trying to capitalize on fears around the coronavirus to slip their code onto victim computers. The ZLoader campaign shows how one piece of code is still inspiring criminals years after law enforcement identified it as pernicious. After malicious hackers had used Zeus malware to steal over $100 million from victims, the Department of Justice disrupted a Zeus-based botnet in 2014 and put a $3 million bounty out for information leading to the arrest of Zeus’s alleged […]
The post Zeus’s legacy lives on as crooks target banking customers in the US and Europe appeared first on CyberScoop.
Continue reading Zeus’s legacy lives on as crooks target banking customers in the US and Europe