Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2024/05/20 5:47 a.m.15 views

Latrodectus Malware Loader Emerges as IcedID's Successor in Phishing Campaigns

Cybersecurity researchers have observed a spike in email phishing campaigns starting early March 2024 that delivers Latrodectus, a nascent malware loader believed to be the successor to the IcedID malware. "These campaigns typically involve a recognizable infection chain involving oversized...

8.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/12/18 9:29 a.m.26 views

QakBot Malware Resurfaces with New Tactics, Targeting the Hospitality Industry

A new wave of phishing messages distributing the QakBot malware has been observed, more than three months after a law enforcement effort saw its infrastructure dismantled by infiltrating its command-and-control C2 network. Microsoft, which made the discovery, described it as a low-volume campaign...

7.2AI score
Exploits0
HackRead
HackRead
added 2023/08/30 5:49 p.m.15 views

Qakbot Botnet Disrupted, Infected 700,000 Computers Globally

By Deeba Ahmed The Qakbot malware is also known as “Qbot” and “Pinkslipbot,” and was used to target critical industries worldwide. This is a post from HackRead.com Read the original post: Qakbot Botnet Disrupted, Infected 700,000 Computers Globally...

7AI score
Exploits0
CISA
CISA
added 2023/08/30 12:0 p.m.5 views

CISA and FBI Publish Joint Advisory on QakBot Infrastructure

Today, the Cybersecurity and Infrastructure Security Agency CISA and Federal Bureau of Investigation FBI released a joint Cybersecurity Advisory CSA, Identification and Disruption of QakBot Infrastructure, to help organizations detect and protect against newly identified QakBot-related activity a...

7.1AI score
Exploits0References8
Rapid7 Blog
Rapid7 Blog
added 2023/04/18 1:0 p.m.33 views

Automating Qakbot Detection at Scale With Velociraptor

In this blog, you will learn a practical methodology to extract configuration data from recent Qakbot samples. I will provide some background on Qakbot, then walk through decode themes in an easy to visualize manner. Additionally, I'll share a Velociraptor artifact to detect and automate the deco...

7.2AI score
Exploits0
Talos Blog
Talos Blog
added 2022/12/13 8:30 p.m.18 views

HTML smugglers turn to SVG images

HTML smuggling is a technique attackers use to hide an encoded malicious script within an HTML email attachment or webpage. Once a victim receives the email and opens the attachment, their browser decodes and runs the script, which then assembles a malicious payload directly on the victims device...

Exploits0
The Hacker News
The Hacker News
added 2022/11/24 6:6 a.m.41 views

Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware

Companies based in the U.S. have been at the receiving end of an "aggressive" Qakbot malware campaign that leads to Black Basta ransomware infections on compromised networks. "In this latest campaign, the Black Basta ransomware gang is using QakBot malware to create an initial point of entry and...

1.1AI score
Exploits0
Talos Blog
Talos Blog
added 2020/02/21 10:43 a.m.466 views

Threat Roundup for February 14 to February 21

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Feb. 14 and Feb. 21. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...

10CVSS10AI score0.99999EPSS
Exploits123
Rows per page
Query Builder