SecureList

MARCH 10, 2025

Infection flow The attacker sends spear-phishing emails with a DOCX file attached. The document uses the remote template injection technique to download an RTF file stored on a remote server controlled by the attacker. The documents used various themes to deceive victims into believing they are legitimate.

Energy and Utilities 108

Energy and Utilities Malware Government Phishing 108

eSecurity Planet

JULY 31, 2024

Endpoint protection solutions safeguard network endpoints against cyberthreats using a selection of management tools, including endpoint detection and response (EDR), endpoint protection platform (EPP), and antivirus (AV). Table of Contents Toggle Does Your Business Need EDR, EPP, or Antivirus Software? What Is Antivirus Software?

Antivirus 119

Antivirus Threat Detection Malware Software 119

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. The FSB headquarters at Lubyanka Square, Moscow.

Antivirus 331

Antivirus VPN Encryption Malware 331

eSecurity Planet

NOVEMBER 7, 2022

LODEINFO has been observed engaged in a spear- phishing campaign since December 2019 by JPCERT/CC. They observed another spear-phishing campaign in March 2022. The malicious Word documents contained fake security notices that invited the victims to “Enable Editing” and “Enable Content,” which executes malicious VBA code.

Antivirus 119

Antivirus Software Malware Security Awareness 119

Security Affairs

FEBRUARY 16, 2021

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware. The malicious activity starts with a phishing email sent to the target victims in Latin American – Brazil, Mexico, Chile, and Peru – and Europe – Spain and Portugal. In short, the phishing email is received by victims.

Antivirus 131

Antivirus Malware Banking Internet 131

Krebs on Security

JULY 20, 2021

Junk email campaigns touting employment or “money mule” scams cost $300 per million, and phishing emails could be blasted out through Severa’s botnet for the bargain price of $500 per million. Severa ran several affiliate programs that paid cybercriminals to trick people into installing fake antivirus software.

Antivirus 343

Antivirus Cybercrime Identity Theft Scams 343

SecureList

FEBRUARY 15, 2021

The email antivirus was triggered most frequently by email messages containing members of the Trojan.Win32.Agentb The Kaspersky Anti-Phishing component blocked 434,898,635 attempts at accessing scam sites. The most frequent targets of phishing attacks were online stores (18.12 Agentb malware family. Trends of the year.

Phishing 145

Phishing Malware Accountability Scams 145

Webroot

MARCH 3, 2025

Antivirus protection Software that protects against viruses and malware. Beware before you share Phishing scams Avoid clicking on malicious links in emails and social media. Document disposal Shred sensitive documents. Password managers Automatically generate and store strong passwords.

Consumer Protection 84

Consumer Protection Identity Theft Scams Social Engineering 84

Security Affairs

MARCH 31, 2025

Russia-linked Gamaredon targets Ukraine with a phishing campaign using troop-related lures to deploy the Remcos RAT via PowerShell downloader. Armageddon , Primitive Bear , ACTINIUM , Callisto ) targets Ukraine with a phishing campaign. The PowerShell code avoids antivirus detection by using Get-Command to execute the payload.

Phishing 63

Phishing Antivirus Encryption Hacking 63

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. Pierluigi Paganini.

Phishing 108

Phishing Social Engineering Malware Advertising 108

Krebs on Security

DECEMBER 13, 2021

18, 2021, when an employee on a Windows computer opened a booby-trapped Microsoft Excel document in a phishing email that had been sent two days earlier. But the antivirus software was set to monitor mode, so it did not block the malicious commands.” Now this is in itself isn’t bad.

Healthcare 325

Healthcare Ransomware Antivirus Hacking 325

SecureList

MAY 16, 2022

The use of embedded HTML documents in phishing e-mails is a standard technique employed by cybercriminals. HTML offers more possibilities than e-mail for camouflaging phishing content. There are two main types of HTML attachments that cybercriminals use: HTML files with a link to a fake website or a full-fledged phishing page.

Phishing 108

Phishing Banking Engineering Antivirus 108

Security Affairs

JUNE 7, 2021

Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. This is the third massive spear-phishing campaign that the Ukrainian government attributed to Russia-linked threat actors this year. Follow me on Twitter: @securityaffairs and Facebook.

Phishing 106

Phishing Government Antivirus Passwords 106

Krebs on Security

FEBRUARY 28, 2024

Unfortunately for us, Doug freaked out after deciding he’d been tricked — backing up his important documents, changing his passwords, and then reinstalling macOS on his computer. MacOS computers include X-Protect , Apple’s built-in antivirus technology. ” Image: SlowMist. Image: SlowMist.

Malware 326

Malware Cryptocurrency Software Phishing 326

The Last Watchdog

SEPTEMBER 28, 2022

Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Other Iranian-based cyberattacks have included hackers targeting Albanian government systems and spear phishing scams. Here are four new phishing trends keeping businesses on their toes. Spear phishing. Phishing via texting.

Phishing 124

Phishing Scams Cybercrime Passwords 124

SecureWorld News

OCTOBER 30, 2023

When it comes to impactful types of internet-borne crime, phishing is the name of the game. According to Verizon's 2023 Data Breach Investigations Report (DBIR), a whopping 74% of breaches involve a human element, which is exactly what phishing aims to exploit. And for good reason. Tactics matter a lot, too.

Phishing 107

Phishing Scams Passwords Wireless 107

eSecurity Planet

FEBRUARY 17, 2025

Simply put, they are antivirus solutions. In fact, it is one of the most popular antivirus solutions. Per 6sense, McAfee Cloud Security makes up 12.47% of the worldwide antivirus market share. It warns you about phishing attempts. Microsoft Defender Overview Better for its free plan and ease of use Overall Rating: 3.8/5

Antivirus 69

Antivirus Identity Theft VPN Spyware 69

Security Affairs

AUGUST 19, 2019

Phishing is one of the oldest methods of cyberattacks. Types of Phishing Attacks. There are different types of phishing attacks and each is deceiving and manipulative in its own unique way. The most common type is phishing is carried out through fraudulent email receptionist. Another targeted phishing practice is Whaling.

Phishing 111

Phishing Accountability Authentication Passwords 111

Security Affairs

APRIL 30, 2021

The state-sponsored hackers sent spear-phishing messages to a general director working at the Rubin Design Bureau , in Saint Petersburg, which is one of three main Russian centers of submarine design. The spear-phishing messages used a malicious Rich Text File (RTF) document that included descriptions of an autonomous underwater vehicle.

Phishing 141

Phishing Malware Antivirus Encryption 141

SecureList

FEBRUARY 9, 2022

Our Anti-Phishing system blocked 253 365 212 phishing links. Safe Messaging blocked 341 954 attempts to follow phishing links in messengers. Hurry up and lose your account: phishing in the corporate sector. That’s why these e-mails would contain a link to a document, file, payment request, etc.,

Phishing 97

Phishing Scams Accountability Banking 97

Security Affairs

SEPTEMBER 7, 2020

Security experts from NVISO Labs recently spotted the activity of a new malware gang, tracked as Epic Manchego, that is actively targeting companies across the world with phishing emails since June. The phishing messages carry weaponized Excel documents that are able to bypass security checks and that had low detection rates.

Cybercrime 134

Cybercrime Phishing Advertising Antivirus 134

Webroot

FEBRUARY 21, 2025

Its a top-end, true all-in-one offering based on a new platform that combines antivirus, password manager, identity protection, VPN, backup, and parental controls. Comprehensive antivirus software is most effective when used in conjunction with security best practices. The post Is your whole digital life protected?

Identity Theft 65

Identity Theft Backups Antivirus Encryption 65

Krebs on Security

SEPTEMBER 6, 2021

The Manipulaters’ core brand in the underground is a shared cybercriminal identity named “ Saim Raza ,” who for the past decade across dozens of cybercrime sites and forums has peddled a popular spamming and phishing service variously called “ Fudtools ,” “ Fudpage ,” “ Fudsender ,” etc.

Software 296

Software Phishing Cybercrime Accountability 296

Security Affairs

DECEMBER 1, 2021

APT groups from China, India, and Russia have used a new RTF (rich text format) template injection technique in recent phishing attacks. The technique was first reported by the security firm Proofpoint spotted which observed phishing campaigns using the weaponized RTF template injection since March 2021. ” concludes the report.

Phishing 139

Phishing Engineering Antivirus Hacking 139

Security Affairs

AUGUST 23, 2020

A bug in Google Drive could be exploited by threat actors to distribute malicious files disguised as legitimate documents or images. An unpatched weakness in Google Drive could be exploited by threat actors to distribute weaponized files disguised as legitimate documents or images. ” reads the post published by THN.

Malware 145

Malware Phishing Advertising Antivirus 145

Security Affairs

FEBRUARY 22, 2021

APOMacroSploit is a macro builder that was to create weaponized Excel documents used in multiple phishing attacks. Excel documents created with the APOMacroSploit builder are capable of bypassing antivirus software, Windows Antimalware Scan Interface (AMSI), and even Gmail and other email-based phishing detection.

Malware 143

Malware Antivirus Phishing Cryptocurrency 143

SC Magazine

JULY 8, 2021

A recent phishing scheme targeting live chat platforms works in part because website operators that use chat features are not always diligently scanning uploaded files for malware. The scheme is yet another recent example of phishing campaigns leveraging communication mediums outside of email to catch prospective victims off-guard.

Phishing 134

Phishing Antivirus Scams Malware 134

SecureWorld News

DECEMBER 30, 2024

Be sure to secure server rooms, document archives, and other sensitive areas that could be involved in the incident. Antivirus solutions, monitoring systems, and endpoint detection and response (EDR) tools play a critical role in combating these threats. Physical security must also be addressed.

Data breaches 106

Data breaches Social Engineering Passwords Accountability 106

eSecurity Planet

DECEMBER 2, 2021

Bad actors are using the new technique to leverage RTF text file attachments in phishing emails. ATP Phishing Campaigns. Users should become aware of the risks of opening documents that require downloads of templates or other data from the internet, especially from unknown users.”. A Change from Office Files.

Malware 124

Malware Phishing Antivirus Cyber threats 124

Security Affairs

OCTOBER 6, 2020

Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents. In the middle-August, the malware was employed in fresh COVID19-themed spam campaign.

Government 142

Government Banking Advertising Malware 142

SecureList

DECEMBER 27, 2022

The group usually takes advantage of Word documents and uses shortcut files for the initial intrusion. Based on our telemetry, we observed that one victim in the UAE was attacked using a malicious Word document. The victim received a document file named “Shamjit Client Details Form.doc” on September 2, 2022.

Malware 145

Malware Banking Passwords Antivirus 145

Security Affairs

JULY 10, 2020

The archive contains LNK (shortcut) files that extract and execute JavaScript code while displaying a decoy document (usually a photo of an ID, credit card, or a bill to prove the physical address). The version 4.0 The image is stored in a file called SC4.P7D

eCommerce 134

eCommerce Advertising Malware Spyware 134

Security Affairs

MAY 22, 2021

The attacks were spotted in 2020, threat actors leveraged spear-phishing attacks, exploitation of vulnerabilities in web applications, hacking the infrastructure of contractors to penetrate the infrastructure of the Russian federal executive authorities. . Group to download the collected data.

Computers and Electronics 139

Computers and Electronics Malware Antivirus Government 139

eSecurity Planet

OCTOBER 4, 2022

The extraordinarily high volume of threats is forcing vendors to include AI-based detection even in consumer antivirus products. Even though there are infinite strains of malware, there are only a handful of vectors, some of which include surfing the Web, phishing emails, Trojan downloads and portable document formats (PDFs).

Malware 126

Malware Phishing Ransomware Mobile 126

Krebs on Security

MAY 16, 2019

“JekaProf” and “procryptgroup” from Moldova, specialized in “crypting” or obfuscating the GozNym malware to evade detection by antivirus software. The indictment alleges 32-year-old Eduard Malancini , a.k.a. Avalanche was dismantled in Dec. 2016 by a similar international law enforcement action.

Cybercrime 216

Cybercrime Banking Small Business Computers and Electronics 216

Adam Levin

NOVEMBER 17, 2020

Leverage antivirus software. Protect yourself from malware by purchasing, updating, and upgrading antivirus software. There’s a chance the unsolicited offer in your inbox is a “ phishing ” scheme. Phishing schemes don’t only travel by way of email. Shred financial documents. Browse online using secure networks.

Scams 243

Scams Retail Banking Passwords 243

Security Affairs

MAY 16, 2020

Experts spotted a new malware dubbed QNodeService that was involved in Coronavirus-themed phishing campaign, crooks promise victims COVID-19 tax relief. Researchers uncovered a new malware dubbed QNodeService that was employed in a Coronavirus-themed phishing campaign. “The use of Node.js js” or “qnodejs-win32-x64.js”)

Malware 140

Malware Phishing Advertising Antivirus 140