HackDig : Dig high-quality web security articles

Email Attacks Using Fear of Election Interference to Spread QBot

Digital attackers launched a malicious email campaign that used fear of election interference in order to spread the QBot trojan.On November 4, Malwarebytes came across an attack email. This message arrived as a thread reply in an attempt to boost its legitimacy.The body of the email did not include the recipient’s name or other personal information. I
Publish At:2020-11-05 11:07 | Read:1048 | Comments:0 | Tags:IT Security and Data Protection Latest Security News electio

QBot Trojan delivered via malspam campaign exploiting US election uncertainties

This blog post was authored by Jérôme Segura and Hossein Jazi. The 2020 US elections have been the subject of intense scrutiny and emotions, while happening in the middle of a global pandemic. As election night ended and uncertainty regarding the results began to creep in, threat actors decided to jump in on it too. Those tracking the threat landscape
Publish At:2020-11-04 18:23 | Read:1162 | Comments:0 | Tags:Cybercrime Social engineering elections malspam Pinkslipbot

Fake Windows Defender Antivirus Theme Used to Spread QBot

Digital attackers incorporated a fake Windows Defender Antivirus theme into a malicious document in order to distribute QBot malware.According to Bleeping Computer, the QBot gang began using a new template for their email attack campaigns’ malicious documents beginning on August 25, 2020.The template adopted the disguise of a Windows Defender Antivirus
Publish At:2020-10-13 09:43 | Read:1202 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Qbot Tr

New Valak Variant Makes “Most Wanted Malware” List for First Time

An updated variant of the Valak malware family earned a place on a security firm’s “most wanted malware” list for the first time.Check Point revealed that an updated version of Valak ranked as the ninth most prevalent malware in its Global Threat Index for September 2020.First detected back in 2019, Valak garnered the attention of Cybereaso
Publish At:2020-10-07 09:25 | Read:1263 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Emotet

Satori IoT botnet author sentenced to 13 months in prison

byLisa VaasThe coder who created the massive Satori botnet of enslaved devices and a handful of other botnets will be spending 13 months behind bars, the US Attorney’s Office of Alaska announced on Friday.Kenneth Currin Schuchman, 22, from Vancouver, Wash., spent years developing distributed denial-of-service (DDoS) botnets. In September 2019, he pleaded gui
Publish At:2020-06-29 07:48 | Read:1299 | Comments:0 | Tags:Denial of Service Law & order Security threats DDoS Fbot/Tsu

An ongoing Qbot campaign targeted customers of tens of US banks

Researchers uncovered an ongoing campaign delivering the Qbot malware to steal credentials from customers of dozens of US financial institutions. Security researchers at F5 Labs have spotted ongoing attacks using Qbot malware payloads to steal credentials from customers of dozens of US financial institutions. Qbot, aka Qakbot, is a data stealer worm wi
Publish At:2020-06-18 04:44 | Read:1587 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware banking hacking ne

Dark Nexus, a new IoT botnet that targets a broad range of devices

Cybersecurity researchers discovered a new IoT botnet, tracked as Dark Nexux, that is used to launch distributed denial-of-service (DDoS) attacks. Dark Nexux is the name of a new emerging IoT botnet discovered by Bitdefender that is used to launch DDoS attacks. The botnet spreads using exploits and launching credential stuffing attacks against a broad
Publish At:2020-04-08 10:45 | Read:1583 | Comments:0 | Tags:Breaking News Cyber Crime Internet of Things Malware Dark Ne

Spelevo exploit kit debuts new social engineering trick

2019 has been a busy year for exploit kits, despite the fact that they haven’t been considered a potent threat vector for years, especially on the consumer side. This time, we discovered the Spelevo exploit kit with its virtual pants down, attempting to capitalize on the popularity of adult websites to compromise more devices. The current Chromium-d
Publish At:2019-12-18 16:50 | Read:2406 | Comments:0 | Tags:Threat analysis EK exploit kit Gozi malvertising Qakbot Qbot

Pinkslipbot banking Trojan exploiting infected machines as control servers

Pinkslipbot banking Trojan is a banking Trojan that uses a complicated multistage proxy for HTTPS-based control server communication. Security researchers at McAfee Labs have spotted a new strain of the Pinkslipbot banking malware (also known as QakBot/QBot) that leverages UPnP to open ports, allowing incoming connections from anyone on the Internet to commu
Publish At:2017-06-19 11:00 | Read:7230 | Comments:0 | Tags:Breaking News Cyber Crime Malware Banking Malware botnet Cyb

QakBot Banking malware causes massive Active Directory lockouts

Security experts at IBM noticed that hundreds to thousands of Active Directory users were locked out of their company’s domain by the QakBot Banking malware Malware researchers at IBM noticed that hundreds to thousands of Active Directory users were locked out of their organization’s domain, the incident is caused by the Qbot banking malware. The malware was
Publish At:2017-06-04 20:45 | Read:6070 | Comments:0 | Tags:Breaking News Cyber Crime Malware banking Hacking QakBot Ban

Who is Anna-Senpai, the Mirai Worm Author?

On September 22, 2016, this site was forced offline for nearly four days after it was hit with “Mirai,” a malware strain that enslaves poorly secured Internet of Things (IoT) devices like wireless routers and security cameras into a botnet for use in large cyberattacks. Roughly a week after that assault, the individual(s) who launched that attack — usi
Publish At:2017-01-18 22:00 | Read:18236 | Comments:0 | Tags:Other Allison Nixon Ammar Zuberi anime anna-senpai applej4ck

The Qbot malware is back with new evasion techniques

Experts at BAE Systems revealed that the Qbot malware is back with new evasion techniques and very effective polymorphic capabilities. Security experts at BAE Systems revealed that the Qbot malware is back, they discovered 54,517 infected machines most of them located in the United States (85%). Qbot first appeared in 2009 when was detected by Symantec, the
Publish At:2016-04-14 19:30 | Read:5773 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime malware Qbot wa

Northern Gold criminal gang infected half million PCs worldwide

Proofpoint firm uncovered a malicious campaign run by the Northern Gold criminal group which is targeting online banking users with a botnet of 500,000 PCs . Security experts at Proofpoint firm have identified a Russian-speaking cybercrime gang, dubbed Northern Gold, that has compromised more than 500,000 machines worldwide to
Publish At:2014-10-09 15:46 | Read:6858 | Comments:0 | Tags:Cyber Crime Security banking botnet Cybercrime Hacking malwa

Israeli Think-Tank Site Serves Sweet Orange Exploit

Attackers have compromised the website of a prominent Israel-based, Middle East foreign policy-focused think tank, the Jerusalem Center for Public Affairs (JCPA). On Friday, researchers from Cyphort reported that the site was serving the Sweet Orange exploit kit via drive-by download. At the time of publication, it appeared the JCPA site was still serving dr
Publish At:2014-09-08 15:00 | Read:4112 | Comments:0 | Tags:Malware Vulnerabilities Web Security banking credentials exp


Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud