Collaborate Disseminate
We used our internal automated system for monitoring open-source repositories and discovered two other malicious Python packages in the PyPI. They were masquerading as one of the most popular open-source packages named “requests“. Continue reading Two more malicious Python packages in the PyPI
We found a suspicious binary and determined it as an IIS module, aimed at stealing credentials and enabling remote command execution from OWA. We named the malicious module ‘Owowa’, Continue reading Owowa: the add-on that turns your OWA into a credential stealer and remote access panel
The pandemic has affected us all in some way, so it would be surprising if cybercriminals were an exception. Spammers and phishers were naturally the trailblazers in this but the entire cybercrime landscape has changed in the last few months. Continue reading Cyberthreats on lockdown
As the ongoing COVID-19 pandemic impacts small businesses in the U.S., cybercriminals are trusting that people will be more likely to open unsolicited emails purporting to come from relevant entities.
The post SBA Spoofed in COVID-19 Spam to Deliver Remcos RAT appeared first on Security Intelligence.
Continue reading SBA Spoofed in COVID-19 Spam to Deliver Remcos RAT
IBM X-Force recently analyzed a new Android banking Trojan dubbed “Banker.BR” that appears to be targeting users in Spain, Portugal, Brazil and other parts of Latin America.
The post New Android Banking Trojan Targets Spanish, Portuguese Speaking Users appeared first on Security Intelligence.
Continue reading New Android Banking Trojan Targets Spanish, Portuguese Speaking Users
The renewed Zeus Sphinx activity that IBM X-Force is seeing features a modified variant targeting online banking users in North America and Australia through the use of maldocs themed around COVID-19.
The post Zeus Sphinx Trojan Awakens Amidst Coronavirus Spam Frenzy appeared first on Security Intelligence.
Continue reading Zeus Sphinx Trojan Awakens Amidst Coronavirus Spam Frenzy
Our team is closely monitoring TrickBot’s developing capabilities, including its new cross-channel attacks using the TrickMo component.
The post TrickBot Pushing a 2FA Bypass App to Bank Customers in Germany appeared first on Security Intelligence.
Continue reading TrickBot Pushing a 2FA Bypass App to Bank Customers in Germany
It is important that gaming companies are prepared to defend against threats to their consumers and that gamers understand the types of threats they can face in their community.
The post Player vs. Hacker: Cyberthreats to Gaming Companies and Gamers appeared first on Security Intelligence.
Continue reading Player vs. Hacker: Cyberthreats to Gaming Companies and Gamers
The findings in the 2020 X-Force Threat Intelligence Index highlight the most common attack vectors, the evolution of ransomware and malware, the risks posed by inadvertent insiders and more.
The post X-Force Threat Intelligence Index Reveals Top Cybersecurity Risks of 2020 appeared first on Security Intelligence.
Continue reading X-Force Threat Intelligence Index Reveals Top Cybersecurity Risks of 2020
In our release of the 2020 Cost of Insider Threats report, we cover details on the cost of insider threats by industry and the tools and activities that can help reduce the risk of insider threats.
The post Gaining Insight Into the Ponemon Institute’s 2020 Cost of Insider Threats Report appeared first on Security Intelligence.
Continue reading Gaining Insight Into the Ponemon Institute’s 2020 Cost of Insider Threats Report