Tag: malware
Cybersecurity Threat Advisory: New malware campaign targets banking institutions
A sophisticated malware campaign known as “Toitoin” is targeting banking firms in Latin America. The campaign employs evasive techniques, including the use of custom-built modules, encryption methods, and hosting malware on Amazon EC2 instances to evade detection. It is crucial...
Tech Time Warp: Making nothing of mobile malware
An early case of mobile malware provoked an interesting reaction from pundits: swift dismissal as much ado about nothing. In June 2000, users of mobile phones made by the Spanish telecommunications company Telefonica began receiving strange text messages. The messages...
Tech Time Warp: Burning questions about Flame’s origins
The Flame virus first flickered publicly in May 2012 when the United Nations’ International Telecommunications Union requested the hacking of Iranian computers be investigated. Although not widespread — only a few hundred targeted computers were thought to have been infected...
Cybersecurity Threat Advisory: Critical PaperCut vulnerability actively exploited
A new vulnerability, CVE-2023-27350, has been discovered which affects PaperCut MF and NG print management software. Successful exploitation of the vulnerability would allow attackers to access sensitive user information (usernames, email addresses, office/department information, and card numbers) without authentication. A...
Threat Spotlight: Proportion of malicious HTML attachments doubles within a year
The security industry has been highlighting the cybercriminal misuse of HTML for years — and evidence suggests it remains a successful and popular attack tool. Last year we reported that around one-in-five (21%) of all HTML attachments scanned by Barracuda in May...
Cybersecurity Threat Advisory: EvilExtractor malware surge detected
EvilExtractor malware has spiked in Europe and the US. EvilExtractor is distributed through phishing campaigns and can harvest various types of data, including browser history, passwords, and cryptocurrency wallets. This is a concern because of the malware’s ability to evade...
Cybersecurity Threat Advisory: New QBot malware delivering campaigns discovered
A new QBot malware campaign has been discovered. Using hijacked business emails, bad actors are distributing PDF and WSF file formats in reply-chain phishing emails to distribute malware. The campaign is designed to steal sensitive data from the target system,...
Cybersecurity Threat Advisory: OneNote malware delivery
Multiple threat actors are now using OneNote documents to deliver malware. In the last month alone, over 50 OneNote campaigns delivering different malware payloads through email attachments have been observed.
Tech Time Warp: Blackworm Offers Rare Chance to Analyze Spread of a Virus
In late January 2006, stopping the worm known as Blackworm (aka Nyxem, MyWife, Blackmal and, interestingly, Kama Sutra) was at the top of most network administrators’ to-do lists.
Tech Time Warp: The malware RAT known as Regin
On Nov. 25, 2014, the Cybersecurity and Infrastructure Agency (CISA) issued an alert about Regin, a “sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns.” Journalists reported the entities affected by Regin included airlines, telecom companies, energy companies and private individuals....
