HackDig : Dig high-quality web security articles

A week in security (June 6 – June 12)

Last week on Malwarebytes Labs: FBI warns of scammers soliciting donations for UkraineMicrosoft autopatch is here…but can you use it?Prometheus ransomware’s flaws inspired researchers to try to build a near-universal decryption toolRotten apples banned from App storeHackers can take over accounts you haven’t even created yetRansomware Ta
Publish At:2022-06-13 09:01 | Read:783 | Comments:0 | Tags:A week in security 4chan a week in security Apple passkeys A

New Emotet variant uses a module to steal data from Google Chrome

Researchers spotted a new variant of the Emotet bot that uses a new module to steal credit card information stored in the Chrome web browser. Proofpoint researchers reported a new wave of Emotet infections, in particular, a new variant is using a new info-stealing module used to siphon credit card information stored in the Chrome browser. Once the card
Publish At:2022-06-09 07:09 | Read:866 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime EMOTET hacking

A week in security (April 25 – May 1)

Last week on Malwarebytes Labs: Why MITRE matters to SMBsApple’s child safety features are coming to a Messages app near youWhy software has so many vulnerabilities, with Tanya Janca: Lock and Code S03E09Watch out for this SMS phish promising a tax refundRogue ads phishing for cryptocurrency: Are you secure?Hospitals taken offline after cyberattackEmotet
Publish At:2022-05-02 04:56 | Read:1464 | Comments:0 | Tags:A week in security AFP call of duty cyber insurance elon mus

Emotet tests new attack chain in low volume campaigns

Emotet operators are testing new attack techniques in response to Microsoft’s move to disable Visual Basic for Applications (VBA) macros by default. The operators of the infamous Emotet botnet are testing new attack techniques in response to Microsoft’s move to disable Visual Basic for Applications (VBA) macros by default. The threat actors
Publish At:2022-04-30 14:18 | Read:1333 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet Cybercrime

Emotet fixes bug in code, resumes spam campaign

Emotet threat actors resumed their email spam campaign on Monday after stopping it late last week to fix a bug. The bug—a flaw in how Emotet is installed onto a system after a victim opens a malicious email attachment—forced the actors to prematurely halt their campaign. Sample email of an Emotet spam containing a defective attachment. (Source: @malwar
Publish At:2022-04-27 08:52 | Read:1364 | Comments:0 | Tags:Malware email spam campaign emotet icedid mark of the web mi

Conti’s Ransomware Toll on the Healthcare Industry

Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But new information confirms this pledge was always a lie, and that Conti has launched more than 200 attacks against hospitals and other healthcare faci
Publish At:2022-04-18 20:34 | Read:1265 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Ransomware Conti Emotet

Emotet modules and recent attacks

p>Emotet was first found in the wild in 2014. Back then its main functionality was stealing user banking credentials. Since then it has survived numerous transformations, started delivering other malware and finally became a powerful botnet. In January 2021 Emotet was disrupted by a joint effort of different countries’ authorities. It took the threat a
Publish At:2022-04-13 07:22 | Read:1771 | Comments:0 | Tags:Malware descriptions Botnets Emotet Malware Malware Descript

As tax deadlines approach, Emotet malware disguises itself in an IRS email

With just a few weeks until the April 15 deadline for US individuals and businesses to file their tax returns, scammers are as busy as ever.Security researchers at Cofsense have warned that they have seen a number of malicious email campaigns which pose as communications from the Internal Revenue Service (IRS).The emails which purport to come from “IRS
Publish At:2022-03-17 13:55 | Read:1900 | Comments:0 | Tags:Featured Articles IT Security and Data Protection Emotet mal

New Emotet botnet is rapidly growing, with +130K unique bots spread across 179 countries

A few months after its return the Emotet botnet has already infected over 130,000 unique bots spread across 179 countries. The Emotet botnet continues to grow and has infected approximately 130,000 hosts since its resurrection in November 2021. Early 2021, law enforcement and judicial authorities worldwide conducted a joint operation, named Operation
Publish At:2022-03-10 10:21 | Read:806 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet EMOTET hack

Conti Ransomware Group Diaries, Part II: The Office

Earlier this week, a Ukrainian security researcher leaked almost two years’ worth of internal chat logs from Conti, one of the more rapacious and ruthless ransomware gangs in operation today. Tuesday’s story examined how Conti dealt with its own internal breaches and attacks from private security firms and governments. In Part II of this series w
Publish At:2022-03-02 16:13 | Read:843 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News The Coming Storm Bentle

Financial cyberthreats in 2021

The year 2021 was eventful in terms of digital threats for organizations and individuals, and financial institutions were no exception. Throughout the past year, we have seen cybercriminals continue to actively target our users with tools and techniques that emerged due to the pandemic. Imperfections in the transition to remote/hybrid work continue to pose a
Publish At:2022-02-23 07:21 | Read:2041 | Comments:0 | Tags:Publications Amazon Cryptocurrencies eBay Emotet Financial m

Microsoft disables the ms-appinstaller protocol because it was abused to spread malware

Microsoft temporarily disabled the ms-appinstaller protocol for MSIX because it was abused by malware, such as Emotet. Microsoft announced to have temporarily disabled the ms-appinstaller protocol for MSIX because it was abused by malware, such as Emotet. In December, Microsoft addressed a vulnerability, tracked as CVE-2021-43890, in AppX in
Publish At:2022-02-07 14:16 | Read:851 | Comments:0 | Tags:Breaking News Hacking Malware Security Cybersecurity cyberse

Emotet spam uses unconventional IP address formats to evade detection

Experts warn Emotet malware campaign using “unconventional” IP address formats in an attempt to evade detection. Threat actors behind a recent Emotet malware campaign have been observed using using “unconventional” IP address formats to evade detection. Trend Micro researchers reported that threat actors are using hexadecimal and o
Publish At:2022-01-24 10:20 | Read:1127 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime EMOTET Emotet b

Emotet directly drops Cobalt Strike beacons without intermediate Trojans

The Emotet malware continues to evolve, in the latest attacks, it directly installs Cobalt Strike beacons to give the attackers access to the target network. Emotet malware now directly installs Cobalt Strike beacons to give the attackers immediate access to the target network and allow them to carry out malicious activities, such as launching ransonware
Publish At:2021-12-08 03:01 | Read:2640 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybersecurity cybersecurit

A week in security (Nov 29 – Dec 5)

Last week on Malwarebytes Labs: CronRAT targets Linux servers with e-commerce attacksHackers all over the world are targeting Tasmania’s emergency servicesMassive faceprint scraping company Clearview AI hauled over the coalsMost people aren’t upgrading to Windows 11: Not the end of the worldHave you downloaded that Android malware from the Play Store late
Publish At:2021-12-06 08:49 | Read:2122 | Comments:0 | Tags:Malwarebytes news Android capcom arcade stadium Clearview AI

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud