Written By David Bisson

Latest Emotet Variant Wielding Connected Devices as First-Layer C&C Servers

A new variant of the Emotet banking malware is using compromised connected devices as first-layer command-and-control (C&C) servers.

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

A threat actor known as TA505 recently launched a phishing campaign that uses living-of-the-land binaries (LOLBins) to distribute a new backdoor malware.

New DLL CryptoMix Ransomware Reportedly Using Remote Desktop Services for Installation

Security researchers discovered that a new DLL CryptoMix ransomware variant is reportedly using Windows Remote Desktop Services (RDS) to install itself on unsuspecting users' machines.

Aggah Campaign Using Bit.ly, BlogSpot and Pastebin to Distribute RevengeRAT

Researchers spotted the operators of the Aggah campaign exploiting Bit.ly, BlogSpot and Pastebin to spread variants of the RevengeRAT malware in the Middle East, Asia, Europe and the U.S.

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Threat actors compromised an account with administrator privileges to infect a manufacturing company with BitPaymer ransomware.

Emotet Variants Hijack Existing Email Conversations to Distribute Malicious Links

Researchers observed variants of the Emotet Trojan injecting themselves into existing email conversations as a means of distributing malicious links.

Sextortion Scammers Enhance Attack Campaigns With Image Spam, Other New Techniques

Security researchers observed sextortion scammers launching new attack campaigns that leverage image spam and other clever techniques to trick users into fulfilling their demands.

Phishing Campaign Makes Use of SingleFile Browser Extension Tool to Obfuscate Malicious Activity

In a recent phishing campaign, fraudsters used a legitimate browser extension tool called SingleFile to obfuscate their attacks and remain undetected.

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Digital attackers used more than a dozen web servers to host 10 malware families and distributed those threats using phishing emails.

Fraudsters Seize on March Madness Fervor With Phishing Attacks, Streaming Scams

Online fraudsters are exploiting users' excitement for March Madness by targeting them with phishing attacks and streaming scams.