Collaborate Disseminate
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “FW: Recent Activity ” pretends to come from Lorna Davis at NatWest Bankl… Continue reading trickbot via Fake NatWest BankLine Support “FW: Recent Activity “
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “FW: Updated Account Transactions ” pretends to come from somebody named … Continue reading Trickbot via fake Bank of America Merrill Lync “FW: Updated Account Transactions “
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email saying you owe £11,612.91 with the subject of “Important : Outstanding Amount” pretends to com… Continue reading Trickbot via Fake HMRC Important : Outstanding Amount – You Owe £11,612.91
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “Important : please review attached document(s) ” pretends to come from Ll… Continue reading trickbot via fake Lloyds Bank “Important : please review attached document(s) “
We are back to a slightly more complicated or involved Trickbot download campaign today with links in the email to download the word doc instead of attachments in the email. This type of malware delivery campaign does tend to have a much shorter ̶… Continue reading Fake Lloyds Bank FW: Confidential documents delivers Trickbot via complicated download mechanism
We are back to a more complicated or involved Trickbot download campaign today with links in the email to download the XLS file instead of attachments. This malware campaign delivery method was first mentioned on 22 October 2018 when I missed the onsla… Continue reading Fake HSBC “FW: Account Review” delivers Trickbot
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “Overdue Invoice ” pretends to come from Pricewaterhouse Coopers LLP but a… Continue reading Fake Pricewaterhouse Coopers LLP “Overdue Invoice” delivers Trickbot
We are back to a slightly more complicated or involved Trickbot download campaign today with links in the email to download the XLS file instead of attachments. This malware campaign delivery method was first mentioned on 22 October 2018 when I missed … Continue reading Fake Companies House “Company report” delivers Trickbot
After the last couple of weeks of the Trickbot gang playing around with weird & wonderful and slightly more complicated delivery methods, they have today reverted to the tried & trusted formats. This example is today’s latest spoof or imitatio… Continue reading Fake Lloyds Bank “Case Number: 238963BACS” delivers Trickbot
We have been noticing a change in the malware delivery pattern with Lokibot ( and possibly other malware) over the last few days. Instead of using the more normal Excel file extensions like XLS or XLSX they have started to use .XLAM extensions. Accord… Continue reading Malware using Excel XLAM Excel Macro enabled addins to bypass protections