BazarBackdoor malware is now being spread via website contact forms
The new delivery vector makes the malware even more difficult to detect.
The stealthy BazarBackdoor malware is now being spread via website contact forms rather than typical phishing emails, according to a report in bleepingcomputer.com. The new delivery method helps the malware to evade detecti... Read more
Canadian VoIP company Sangoma hit by Conti ransomware
Sangoma Technologies, the Canadian VoIP company has been hit by a ransomware attack. The company sells products like Switchbox and FreePBX and owns Asterix provider Digium. It disclosed the attack in a statement, on Christmas Eve and said the ransomware targeted the company’s servers.
The comp... Read more
Microsoft helms campaign to disrupt TrickBot, the infamous botnet
Microsoft claimed that it disrupted the infamous botnet named TrickBot, in partnership with other companies. The evidence shows that only part of the botnet was affected by the takedown. TrickBot first appeared back in 2016 and is believed to be in more than 1 million machines.
It was used to ge... Read more
TrickBot malware has collected login credentials from 250 million email addresses
TrickBot, the malware discovered in 2016, has collected the passwords and address books of 250 million e-mail addresses. Investigators from security company Deep Instinct have found that, reports TechCrunch.
TrickBot was originally a financially motivated malware that was first spotted in 2016. Sinc... Read more
Malware Trickbot now also uses Excel file to steal login codes
Trickbot, the malware that had previously conventionally gone after bank details, now uses a Microsoft Excel file to capture user login codes. The new module is called pwgrab32 and tries to steal autofill data, browsing history and usernames and passwords from browsers and various other apps via a M... Read more