Lucene search
K

29 matches found

The Hacker News
The Hacker News
added 2025/01/23 9:43 a.m.17 views

QakBot-Linked BC Malware Adds Enhanced Remote Access and Data Gathering Features

Cybersecurity researchers have disclosed details of a new BackConnect BC malware that has been developed by threat actors linked to the infamous QakBot loader. "BackConnect is a common feature or module utilized by threat actors to maintain persistence and perform tasks," Walmart's Cyber...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/12/11 2:7 p.m.7 views

ZLoader Malware Returns With DNS Tunneling to Stealthily Mask C2 Comms

Cybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System DNS tunnel for command-and-control C2 communications, indicating that the threat actors are continuing to refine the tool after resurfacing a year ago. "Zloader 2.9.4.0 adds notable...

7.9AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/01 10:27 a.m.13 views

ZLoader Malware Evolves with Anti-Analysis Trick from Zeus Banking Trojan

The authors behind the resurfaced ZLoader malware have added a feature that was originally present in the Zeus banking trojan that it's based on, indicating that it's being actively developed. "The latest version, 2.4.1.0, introduces a feature to prevent execution on machines that differ from the...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/30 8:43 a.m.44 views

New ZLoader Malware Variant Surfaces with 64-bit Windows Compatibility

Threat hunters have identified a new campaign that delivers the ZLoader malware, resurfacing nearly two years after the botnet's infrastructure was dismantled in April 2022. A new variant of the malware is said to have been in development since September 2023, Zscaler ThreatLabz said in an analys...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/01/23 6:56 a.m.12 views

ZLoader’s Resurgence after Two Years in the Shadows

Summary: Zloader is a highly sophisticated Trojan originating from the leaked Zeus source code. Notable for its adaptive nature, the malware continuously evolved through each campaign since its debut in August 2015. After nearly two years of dormancy, Zloader reemerged with new iterations. Threat...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/11/19 7:24 a.m.48 views

Microsoft Warns of Hackers Using Google Ads to Distribute Royal Ransomware

A developing threat activity cluster has been found using Google Ads in one of its campaigns to distribute various post-compromise payloads, including the recently discovered Royal ransomware. Microsoft, which spotted the updated malware delivery method in late October 2022, is tracking the group...

1.2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2022/04/18 8:41 p.m.23 views

Conti’s Ransomware Toll on the Healthcare Industry

Conti -- one of the most ruthless and successful Russian ransomware groups -- publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But new information confirms this pledge was always a lie, and that Conti has launched more than 20...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/04/18 11:27 a.m.21 views

A week in security (April 11 – 17)

Last week on Malwarebytes Labs: Credential-stealing malware disguises itself as Telegram, targets social media users Old Play Store apps served notice by upcoming API level changes Denonia cryptominer is first malware to target AWS Lambda Ransomware: March 2022 review Why identity management...

1.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/04/14 11:41 a.m.12 views

Zloader, another botnet, bites the dust

Microsoft has announced that its Digital Crimes Unit DCU has taken legal and technical action to disrupt a malicious botnet called Zloader. Zloader or Zbot are common names used to refer to any malware related to the ZeuS family. There are a lot of those because the ZeuS banking Trojan source cod...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/04/14 7:2 a.m.50 views

Microsoft Disrupts ZLoader Cybercrime Botnet in Global Operation

Microsoft and a consortium of cybersecurity companies took legal and technical steps to disrupt the ZLoader botnet, seizing control of 65 domains that were used to control and communicate with the infected hosts. "ZLoader is made up of computing devices in businesses, hospitals, schools, and home...

1.6AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/04/13 4:0 p.m.61 views

Dismantling ZLoader: How malicious ads led to disabled security tools and ransomware

As announced today, Microsoft took action against the ZLoader trojan by working with telecommunications providers around the world to disrupt key ZLoader infrastructure. We used our research into this threat to enrich our protection technologies and ensure this infrastructure could no longer be...

9.3CVSS0.8878EPSS
Exploits2
Microsoft Secure
Microsoft Secure
added 2022/04/13 4:0 p.m.84 views

Dismantling ZLoader: How malicious ads led to disabled security tools and ransomware

As announced today, Microsoft took action against the ZLoader trojan by working with telecommunications providers around the world to disrupt key ZLoader infrastructure. We used our research into this threat to enrich our protection technologies and ensure this infrastructure could no longer be...

9.3CVSS0.8878EPSS
Exploits2
Malwarebytes
Malwarebytes
added 2022/01/24 3:39 p.m.288 views

Microsoft is now disabling Excel 4.0 macros by default

Back in October 2021, Microsoft announced in an email sent to customers that it planned to disable Excel 4.0 macros by default to protect customers from malicious documents. Now, Microsoft says that change has happened. Good news Sometimes good news in the security world comes later than expected...

9.3CVSS8.8AI score0.99945EPSS
Exploits33
HackRead
HackRead
added 2022/01/05 4:14 p.m.14 views

9-year-old Windows flaw abused to drop ZLoader malware in 111 countries

By Waqas The vulnerability was identified and fixed in 2013 but in 2014 Microsoft revised the fix. This is a post from HackRead.com Read the original post: 9-year-old Windows flaw abused to drop ZLoader malware in 111 countries...

2.8AI score
Exploits0
ThreatPost
ThreatPost
added 2022/01/05 1:0 p.m.36 views

‘Malsmoke’ Exploits Microsoft’s E-Signature Verification

Threat actors are exploiting Microsoft’s digital signature verification to steal user credentials and other sensitive information by delivering the ZLoader malware, which previously has been used to distribute Ryuk and Conti ransomware, researchers have found. Researchers at Check Point Research...

7.4AI score
Exploits0References10
The Hacker News
The Hacker News
added 2022/01/05 11:0 a.m.172 views

New Zloader Banking Malware Campaign Exploiting Microsoft Signature Verification

An ongoing ZLoader malware campaign has been uncovered exploiting remote monitoring tools and a nine-year-old flaw concerning Microsoft's digital signature verification to siphon user credentials and sensitive information. Israeli cybersecurity company Check Point Research, which has been trackin...

8.8CVSS0.5AI score0.44647EPSS
Exploits1
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/10/01 12:0 a.m.10 views

This Week in Security News – October 1, 2021

Welcome to our weekly roundup, where we share what you need to know about cybersecurity news and events that happened over the past few days. This week, learn about Zloader, a notable recent ZBOT variant. Also, read on a recently introduced bill that would mandate ransom payment reporting...

2.5AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/10/01 12:0 a.m.8 views

This Week in Security News – October 1, 2021

Welcome to our weekly roundup, where we share what you need to know about cybersecurity news and events that happened over the past few days. This week, learn about Zloader, a notable recent ZBOT variant. Also, read on a recently introduced bill that would mandate ransom payment reporting...

6.8AI score
Exploits0
HackRead
HackRead
added 2021/09/16 12:0 p.m.27 views

Fake TeamViewer download ads distributing new ZLoader variant

By Deeba Ahmed According to researchers, the new campaign uses fake TeamViewer download ads to trick users into downloading the Zloader malware. This is a post from HackRead.com Read the original post: Fake TeamViewer download ads distributing new ZLoader variant...

4.9AI score
Exploits0
ThreatPost
ThreatPost
added 2021/09/14 5:21 p.m.45 views

ZLoader’s Back, Abusing Google AdWords, Disabling Windows Defender

A targeted campaign delivering the ZLoader banking trojan is spreading via Google AdWords, and is using a mechanism to disable all Windows Defender modules on victim machines, researchers have found. That’s according to SentinelLabs, which said that to lower the rates of detection, the infection...

7.3AI score
Exploits0References5
Rows per page
Query Builder