December 7, 2018 SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies 2 min read - Analysts discovered a new spear phishing attack campaign from the SNAKEMACKEREL group that uses fake Brexit-related documents to infiltrate major government agencies and steal information.
December 7, 2018 Sednit Threat Group Adds Delphi Dropper and Mail Downloader to Zebrocy Toolset 2 min read - Security researchers observed the Sednit threat group distributing Zebrocy malware using a Delphi dropper and mail downloader.
December 4, 2018 Thanksgiving Spam Campaign Use Obfuscation to Deliver Emotet Banking Trojan < 1 min read - Bad actors recently launched a Thanksgiving-themed spam campaign that used obfuscation to deliver the Emotet banking Trojan.
December 3, 2018 FakeSpy And XLoader Mobile Malware May Come From Yanbian Gang 2 min read - Security researchers revealed that two mobile malware threats, Xloader and FakeSpy, may have been developed and launched by the same cybercriminal group.
November 7, 2018 NARWHAL SPIDER Uses Steganography to Deliver URLZone Malware in Cutwail Spam Campaign 2 min read - A new Cutwail spam campaign is leveraging steganography — hiding data within images — to compromise devices and download URLZone.
November 5, 2018 Threat Actors Combine Windows Utilities in Malware Campaign Targeting Users in Brazil 2 min read - Researchers observed threat actors impersonating the Brazilian postal service in a malware campaign that combines legitimate Windows files such as WMI and CertUtil to steal banking data.
Malware October 10, 2018 The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion 5 min read - IBM X-Force researchers observed the Necurs botnet spewing millions of spam emails from more than 30,000 malicious IPs to extort bitcoin from victims who may or may not have viewed adult content.
September 26, 2018 Tax Refund Phishing Cases Resurface in Scheme Targeting UK Users 2 min read - Cybercriminals have been getting an early start on tax-related phishing cases by promising U.K. users a sizable refund in an attempt to steal credit card details and other personal information.
September 24, 2018 OilRig Group Aims BONDUPDATER Trojan Malware at Middle Eastern Governments < 1 min read - The OilRig threat group recently targeted government offices in the Middle East with a spear phishing attack that involved the Trojan malware BONDUPDATER.
Advanced Threats September 5, 2018 Threat Actors Peddling Weaponized IQY Files Via Necurs Botnet 5 min read - Threat actors have taken a liking to IQY files, which are foreign to most users and appear benign to many spam filters.