crimeware – WindowsTechs.com

FakeSG campaign, Akira ransomware and AMOS macOS stealer

Posted on December 13, 2023 by GReAT

In this report, we share our latest crimeware findings: FakeSG malware distribution campaign delivering NetSupport RAT, new Conti-like Akira ransomware and AMOS stealer for macOS. Continue reading FakeSG campaign, Akira ransomware and AMOS macOS stealer→

IT threat evolution Q3 2023

Posted on December 1, 2023 by David Emm

Attacks on a critical infrastructure target in South Africa, supply-chain attack on Linux machines, Telegram doppelganger used to target people in China. Continue reading IT threat evolution Q3 2023→

Crimeware and financial cyberthreats in 2024

Posted on November 21, 2023 by Kaspersky

Kaspersky assesses last year’s predictions for the financial threat landscape, and tries to anticipate crimeware trends for the coming year 2024. Continue reading Crimeware and financial cyberthreats in 2024→

Stealer for PIX payment system, new Lumar stealer and Rhysida ransomware

Posted on October 24, 2023 by GReAT

In this report, we share our latest crimeware findings: GoPIX targeting PIX payment system; Lumar stealing files and passwords; Rhysida ransomware supporting old Windows. Continue reading Stealer for PIX payment system, new Lumar stealer and Rhysida ransomware→

A cryptor, a stealer and a banking trojan

Posted on September 28, 2023 by GReAT

In this report, we share our latest crimeware findings: the ASMCrypt cryptor/loader related to DoubleFinger, a new Lumma stealer and a new version of Zanubis Android banking trojan. Continue reading A cryptor, a stealer and a banking trojan→

What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot

Posted on August 3, 2023 by GReAT

In this report, we share our recent crimeware findings: the new DarkGate loader, new LokiBot campaign and new Emotet version delivered via OneNote. Continue reading What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot→

Andariel’s silly mistakes and a new malware family

Posted on June 28, 2023 by GReAT

In this crimeware report, Kaspersky researchers provide insights into Andariel’s activity targeting organizations: clumsy commands executed manually, off-the-shelf tools and EasyRat malware. Continue reading Andariel’s silly mistakes and a new malware family→

LockBit Green and phishing that targets organizations

Posted on June 22, 2023 by GReAT

In this crimeware report, Kaspersky researchers provide insights into the Conti-based LockBit Green variant, ransomware samples for macOS, FreeBSD, etc. and phishing campaigns targeting organizations. Continue reading LockBit Green and phishing that targets organizations→

Sneaky DoubleFinger loads GreetingGhoul targeting your cryptocurrency

Posted on June 12, 2023 by GReAT, Sergey Lozhkin

Kaspersky researchers share insight into multistage DoubleFinger loader attack delivering GreetingGhoul cryptocurrency stealer and Remcos RAT. Continue reading Sneaky DoubleFinger loads GreetingGhoul targeting your cryptocurrency→

Uncommon infection methods—part 2

Posted on April 13, 2023 by GReAT

Kaspersky researchers discuss infection methods used by Mirai-based RapperBot, Rhadamantys stealer, and CUEMiner: smart brute forcing, malvertising, and distribution through BitTorrent and OneDrive. Continue reading Uncommon infection methods—part 2→