BRATA Evolution from Malware to APT
Researchers have spotted the BRATA malware targeting a specific financial institution, its operators modified the attack chain customizing the malware to hit a specific target at a time, moving to…
Microsoft Disrupted ZLOADER C2
Microsoft dismantled the C2C used by the ZLoader trojan. It sinkholed 65 domains used by the ZLoader operators along with an additional 319 currently registered DGA domains. Zloader is a banking malware that has…
Octo Banking Trojan hits Android Users
Huge number of Android apps that are malicious by nature have been installed from Google Play Store more than 50,000 times are being used to target banks and other financial…
Escobar Android Malware in Action
Android banking trojan Aberebot first spotted last year, is back with a new name “Escobar” and with new features, including stealing Google Authenticator MFA codes, recording audio and taking photos…
SharkBot in Action Again
The SharkBot remote access banking trojan was first spotted in the wild in October 2021. Automatic Transfer System (ATS), is new to Android and lets attackers move money automatically out…
Vultur ! A Mobile Banking Trojan In Action
A harmful 2FA authenticator app that downloaded over 10,000 times has been removed from the Google Play Store whish been trojanized. The software claimed to be provided with a secure…
TrickBot’s New Crashing Feature
TrickBot malware has received new features that make it more challenging to research, analyze, and detect in the latest variants, including crashing browser tabs when it detects beautified scripts. With…
Emotet Surging With Unconventional IP addresses
In recent Emotet malware campaign its been observed using of “unconventional” IP address formats to evade detection. In additional,threat actors are using hexadecimal and octal representations of the IP address.…