Lucene search
K

11 matches found

Talos Blog
Talos Blog
added 2022/11/18 5:42 p.m.21 views

Threat Round up for November 11 to 18

Today, Talos is publishing a glimpse into the most prevalent threats weve observed between Nov. 11 and Nov. 18. As with previous roundups, this post isnt meant to be an in-depth analysis. Instead, this post will summarize the threats weve observed by highlighting key behavioral characteristics,...

7.1AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/02/03 7:22 a.m.38 views

Catching the RAT called Agent Tesla

For the last few years, the Qualys Research Team has been observing an infamous "Malware-as-a-service" RAT Remote Access Trojan called Agent Tesla. It first appeared in 2014, and since then many variants have been deployed. This malware uses multiple techniques for evading detection as well as...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/17 11:55 a.m.42 views

Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan

A new social engineering-based malvertising campaign targeting Japan has been found to deliver a malicious application that deploys a banking trojan on compromised Windows machines to steal credentials associated with cryptocurrency accounts. The application masquerades as an animated porn game, ...

0.6AI score
Exploits0
Talos Blog
Talos Blog
added 2019/11/08 2:31 p.m.117 views

Threat Roundup for November 1 to November 8

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 1 and Nov. 8. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

10CVSS10AI score0.99999EPSS
Exploits123
Krebs on Security
Krebs on Security
added 2018/10/22 7:55 p.m.72 views

Who Is Agent Tesla?

A powerful, easy-to-use password stealing program known as Agent Tesla has been infecting computers since 2014, but recently this malware strain has seen a surge in popularity -- attracting more than 6,300 customers who pay subscription fees to license the software. Although Agent Tesla includes ...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/05/03 10:0 a.m.9 views

Boutique Shops Offering Rewards Points Pop Up on the Dark Web

Cybercriminal interest in stolen data is not solely limited to financial or personally identifiable information. The exploitation of rewards-points programs, especially those associated with travel, is also on the radar screen for the bad guys. To cater to this interest, a series of boutique stor...

0.1AI score
Exploits0References2
The Hacker News
The Hacker News
added 2017/10/05 7:40 a.m.7 views

FormBook—Cheap Password Stealing Malware Used In Targeted Attacks

It seems sophisticated hackers have changed the way they conduct targeted cyber operations—instead of investing in zero-days and developing their malware; some hacking groups have now started using ready-made malware just like script kiddies. Possibly, this could be a smart move for state-sponsor...

7.3AI score
Exploits0
FireEye
FireEye
added 2017/06/12 11:0 a.m.28 views

Behind the CARBANAK Backdoor

In this blog, we will take a closer look at the powerful, versatile backdoor known as CARBANAK aka Anunak. Specifically, we will focus on the operational details of its use over the past few years, including its configuration, the minor variations observed from sample to sample, and its evolution...

7.6AI score
Exploits0
ThreatPost
ThreatPost
added 2015/09/15 1:20 p.m.9 views

CoreBot Adds New Capabilities, Transitions to Banking Trojan

As researchers expected it would, CoreBot, the credential-stealing malware that surfaced last month, has added a bevy of new capabilities and reinvented itself as a robust banking Trojan. Researchers said the malware shares more similarities with Dyre, another high profile banking Trojan, than a...

7AI score
Exploits0References4
The Hacker News
The Hacker News
added 2012/08/16 9:29 p.m.6 views

Airport VPN hacked using Citadel malware

It sounds like an air traveler's nightmare, Researchers at Trusteer recently uncovered a variant of the Citadel Trojan targeting the virtual private network VPN credentials used by employees at a major airport.The firm would not disclose the name of the airport because the situation is being...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2012/08/14 1:28 p.m.15 views

Citadel Malware Used to Infiltrate Airport VPN

The Citadel Trojan is really starting to become kind of a pain in the neck. Not content to sit by and watch while its more well-known rivals Zeus and SpyEye get all the attention, the Citadel malware has begun showing up in some interesting places, with the latest example being the discovery of t...

0.5AI score
Exploits0References4
Rows per page
Query Builder