Collaborate Disseminate
A new module for TrickBot banking Trojan has recently been discovered in the wild that lets attackers leverage compromised systems to launch brute-force attacks against selected Windows systems running a Remote Desktop Protocol (RDP) connection exposed… Continue reading TrickBot Now Exploits Infected PCs to Launch RDP Brute Force Attacks
A new TrickBot variant shows that the malware is continuing to swap out new anti-analysis and persistence tactics. Continue reading New TrickBot Variant Updates Anti-Analysis Tricks
To combat the threat of banking Trojans and ransomware, organizations should stay up to date with the rapidly evolving threat landscape by utilizing the latest threat intelligence.
The post Banking Trojans and Ransomware — A Treacherous Matrimony Bound to Get Worse appeared first on Security Intelligence.
Continue reading Banking Trojans and Ransomware — A Treacherous Matrimony Bound to Get Worse
Recent spam campaigns from Emotet featured sextortion content very similar to emails previously sent by the Necurs botnet.
The post Sextortion Scams Delivered by Emotet Net 10 Times More Than Necurs Sextortion — Here’s Why appeared first on Security Intelligence.
The malware is back in targeted attacks against Brazilian banking customers, this time using a new technique that involves mobile app authorization. Continue reading CamuBot Banking Trojan Returns In Targeted Attacks
IBM X-Force has identified a spam campaign targeting users in Japan that employs the Coronavirus scare as a lure to encourage people to open malicious emails.
The post Emotet Activity Rises as It Uses Coronavirus Scare to Infect Targets in Japan appeared first on Security Intelligence.
Continue reading Emotet Activity Rises as It Uses Coronavirus Scare to Infect Targets in Japan
The people behind banking trojan TrickBot have expanded the malware’s capability with a new backdoor meant to compromise high-value targets, according to new research from SentinelOne. The update should cause alarm for the financial sector, since it can enable cybercriminals to infect systems undetected with malicious software, and then surreptitiously escalate their attack to pilfer off confidential banking information, or launch ransomware attacks, according to SentinelLabs, SentinelOne’s new threat intelligence division. The new backdoor, which SentinelLabs calls “PowerTrick,” is likely launched through Windows management system PowerShell, which seems to indicates that the new fuction has been developed to reach intended victims while avoiding detection. “‘PowerTrick’ is a flexible new tool that allows attackers to augment their access on the fly while still staying undetected, bypassing restrictions and security controls,” Vitali Kremez, who leads research at SentinelLabs, said in a blog post. These findings are the latest addition to a growing body of research that details how scammers […]
The post TrickBot developers have spun up a new backdoor for high-value targets appeared first on CyberScoop.
Continue reading TrickBot developers have spun up a new backdoor for high-value targets
Here’s a short list of 7 malware categories we hope you never encounter. Sadly, it’s not an exhaustive list… but it’s a helpful start. Continue reading 7 types of virus – a short glossary of contemporary cyberbadness
The U.S. Department of Justice has announced the sentencing of three members of the network behind the GozNym cyberattacks on U.S. entities resulting in the theft of $100 million. Krasimir Nikolov, 47, of Varna, Bulgaria, was sentenced on December 16, … Continue reading GozNym cyberattackers sentenced in Pittsburgh and Tbilisi, Georgia
Experts from IBM X-Force reflect on the past year and also share security predictions for 2020, including evolutions in ransomware, AI adoption and targets for cybercriminals.
The post IBM X-Force Security Predictions for 2020 appeared first on Security Intelligence.