Malware

Pierluigi Paganini April 21, 2020
Spearphishing attacks hit the oil and gas industry sector

Hackers launched spear-phishing attacks against organizations in the oil and gas industry sector spreading the Agent Tesla info-stealer malware. Crooks are targeting organizations in the oil and gas industry sector with targeted spearphishing campaigns impersonating shipment companies and engineering contractors. The attacks aim at infecting victims with the infamous Agent Tesla info-stealer malware. Agent Tesla is […]

Pierluigi Paganini April 21, 2020
How to Protect Against COVID-19 Email Scams

The increasing number of news articles circulating on the internet in the wake of COVID-19 has resulted in the rise of Phishing attacks which feed on people’s fears. Phishing emails have been driven up to 600% since the end of February as cybercriminals capitalize on people’s fears. COVID-19 phishing emails have been said to make […]

Pierluigi Paganini April 20, 2020
Threat Report Portugal Q1 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is a novel open sharing database with the ability to collect indicators from multiple sources, developed by Segurança-InformĂĄtica. This feed is based on automatic searches and also has a strong contribution from the community. This makes it a reliable and trustworthy and […]

Pierluigi Paganini April 20, 2020
Law enforcement and Microsoft join forces to dismantle botnet using LED Light Control Console

Cybercriminals have abused LED light control console to launch malicious attacks, Microsoft’s security experts warn. Microsoft researchers shared details of a new incident discovered in Taiwan, where crooks abused LED light control consoles to launch malicious attacks. Threat actors used the consoles to deliver malware and ransomware through an IoT botnet that was also used […]

Pierluigi Paganini April 19, 2020
Cyberattack reports quadrupled during Coronavirus outbreak, FBI warns

The FBI announced that the number of cybercrime reports is spiked since the beginning of the Coronavirus (COVID-19) pandemic. Speaking at the Aspen Institute, FBI Deputy Assistant Director Tonya Ugoretz, announced that the bureau has observed a spike in cybercrime reports since the beginning of the Coronavirus pandemic. The FBI official explained that the number […]

Pierluigi Paganini April 19, 2020
Coronavirus-themed attacks April 12 – April 18, 2020

This post includes the details of the Coronavirus-themed attacks launched from April 12 to April 18, 2020. Threat actors exploit the interest in the Coronavirus outbreak while infections increase worldwide, experts are observing new campaigns on a daily bases. Below a list of attacks detected this week. April 14 – Crooks target Healthcare facilities involved […]

Pierluigi Paganini April 19, 2020
Security Affairs newsletter Round 260

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs A new e-skimmer found on WordPress site using the WooCommerce plugin Coronavirus-themed attacks April 05 – April 11, 2020 Thousands Zoom credentials available on a Dark Web forum 500,000+ Zoom accounts available for sale on the Dark Web […]

Pierluigi Paganini April 19, 2020
Are Maze operators behind the attack on the IT services giant Cognizant?

IT services giant Cognizant suffered a ransomware attack on Friday, according to BleepingComputer company was hit by the Maze Ransomware crew. Information technologies services giant Cognizant is the last victim of a ransomware attack, according to BleepingComputer the attack was launched by the Maze Ransomware gang. Cognizant is an American multinational corporation that provides IT services, it is […]

Pierluigi Paganini April 18, 2020
Coronavirus-themed campaign targets energy sector with PoetRAT

Threat actors employed the previously-undetected PoetRAT Trojan in a Coronavirus-themed campaign aimed at government and energy sectors.  Cisco Talos researchers have uncovered a new Coronavirus-themed campaign employing a previously-undiscovered RAT tracked as PoetRAT. The attacks targeted the Azerbaijan government and utility companies, the malicious code was designed to infect supervisory control and data acquisition (SCADA) systems, […]

Pierluigi Paganini April 18, 2020
Trickbot is the most prolific malware operation using COVID-19 themed lures

TrickBot is the malware that most of all is involved in COVID-19-themed attacks, Microsoft’s Office 365 Advanced Threat Protection (ATP) data reveals. The analysis of Microsoft Office 365 ATP data revealed that TrickBot is, at the moment, the malware operation with the highest number of unique COVID-19-themed malicious emails and attachments. Microsoft experts revealed that this campaign […]