2018 IBM X Force Report: Shellshock Fades, Gozi Rises and Insider Threats Soar

The latest IBM X-Force report highlighted threats stemming from misconfigured cloud servers and inadvertent insider negligence and examined malware trends from 2017 that could continue into 2018.

The post 2018 IBM X Force Report: Shellshock Fades, Gozi Rises and Insider Threats Soar appeared first on Security Intelligence.

Continue reading 2018 IBM X Force Report: Shellshock Fades, Gozi Rises and Insider Threats Soar

Banking Trojan Dropped Through Spoofed Korean CERT Bulletin

Cyber criminals continue to evolve tactics, sometimes going to great lengths to socially engineer people. In this recently observed sample, we find the long-standing and ever-evolving banking Trojan, Gozi using a Korean Cert to trick users into do… Continue reading Banking Trojan Dropped Through Spoofed Korean CERT Bulletin

Ursnif Campaign Waves Breaking on Japanese Shores

The Ursnif banking Trojan began targeting financial institutions in Japan during Q3 2017 and continues to operate in the region as we enter Q4.

The post Ursnif Campaign Waves Breaking on Japanese Shores appeared first on Security Intelligence.

Continue reading Ursnif Campaign Waves Breaking on Japanese Shores

Japanese language invoice malspam using js files inside zips today

Overnight we have seen another mass Japanese Malspam campaign with a change to the malware downloaders delivering some sort of malware that is  being detected on VirusTotal as a ransomware. I am not certain that is a correct detection. This gang traditionally deliver Ursnif / Gozi  banking Trojan and it has Continue reading → Continue reading Japanese language invoice malspam using js files inside zips today

Japanese language fake invoice malspam using macro laden XLS files continue to deliver Ursnif banking Trojans

It looks like the Japanese malspams are still continuing  to deliver Ursnif /Gozi / ISFB banking Trojans. This one is yet another fake invoice email with the subject of 請求書添付書類について  (About invoice attachment documents) , pretending to come from random Japanese email addresses with a malicious Excel XLS  attachment that contains macros Continue reading → Continue reading Japanese language fake invoice malspam using macro laden XLS files continue to deliver Ursnif banking Trojans

more Japanese language invoice malspam delivering Ursnif

Yet another in the never ending series of Japanese language malspam malware downloaders delivering Ursnif /Gozi / ISFB banking Trojan is this email with the subject of 請求書 (invoice). These emails are coming in slightly malformed and outlook doesn’t want to open them or display them properly. This might be a language Continue reading → Continue reading more Japanese language invoice malspam delivering Ursnif

More Japanese Language invoice malspam delivering ursnif banking Trojan

Back to the never ending series of Japanese language malspam malware downloaders delivering Ursnif /Gozi / ISFB banking Trojan is yet another email with the subject of 請求書を添付 (Attach invoice). These emails are coming in slightly malformed and outlook doesn’t want to open them or display them properly. This might be Continue reading → Continue reading More Japanese Language invoice malspam delivering ursnif banking Trojan