NanoCore RAT
Researchers have spoted a new malspam campaign that is abusing icon files to trick victims into executing the NanoCore remote access Trojan. This campaign uses. Zipx file attachments format The…
Posted incybersecurity Data Security Productivity
APOMacroSploit Malware
APOMacroSploit is a macro builder that was to create weaponized Excel documents used in multiple phishing attacks. The threat actor behind the tool continuously updated it to evade detection. The…
Trojan 2021
Starting 2021 , it's pouring Trojans. Day after day threat landscape keeps expanding. Observations The cyber threat landscape encountered multiple instances of cyberattacks from trojans, both old and new. Researchers…
Posted inChrome Browser
Trojanized Chrome Extension
Google Chrome users repeated threat warnings. Trojan.Multi.Preqw.gen, which Chrome tried to download from a third-party site, was specified as the source of the threat. Culprits had abused more than twenty…
Vietnamese Backdoor targets macOS
OceanLotus popularly known to be APT-C-00 and APT32 been observed mainly targeting government and corporate entities in Southeast Asia. The newly discovered sample shows similarities in dynamic behavior and code, clearly…
Qakbot 🐎 ->Prolock ☠️-> Egregor 👹
Group-IB discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. ProLock = Egregor The analysis of attacks where Egregor has been deployed revealed that the TTPs used…
Bazar Backdoor 🚪✴️
TrickBot trojan has survived the massive takedown operation! While the trojan is set to reboot its operations with a new bunch of backend infrastructure, the operators are making headway with…
Lauda (Loda) RAT
Lauda RAT is a RAT (Remote Access Trojan) that has been working as malware analysts in recent years and was first spotted back in 2017. The Lauda RAT is a simple…