Collaborate Disseminate
I saw a fairly short-lived, reasonably low volume, malspam campaign earlier this morning that looks like it comes via Necurs Botnet and is somehow using a “new” compromise or security hole in the DNS system. These appear to be targeted at U… Continue reading It looks like another DNS compromise hack happening
Last week we reported on a fairly large scale Gandcrab ransomware campaign that was assisted in delivery via a security hole in Godaddy (and almost certainly other major DNS providers). Some of the major tech sites reported on the DNS compromise with a… Continue reading Godaddy DNS system still compromised to deliver yet another Gandgrab Ransomware campaign
A slightly interesting and unusual malware delivery to report first today. First we note the spelling mistake in the subject line “Purchase Oder”, then the body content when the email is delivered to the prospective victim. Please read the … Continue reading megalodon delivered via fake purchase oder via compromised Godaddy DNS settings