Cybercrime & Digital Threats

The city of Frankfurt, Germany, became the latest victim of Emotet after an infection forced it to close its IT network.

We have recently spotted a Negasteal/Agent Tesla variant (detected by Trend Micro as Worm.Win32.NEGASTEAL.B) that uses a new delivery vector: removable drives.

We listed a rundown of PoCs and real-life attacks where machine learning was weaponized to get a clearer picture of what is possible and what is already a reality with regard to machine learning-powered cyberthreats.

Multiple government procurement services were targeted by a credential harvesting campaign that uses bogus pages to steal login credentials.

Researchers found hundreds of malicious Android apps to steal users' information, install adware, and access devices via excessive permissions.

Snatch ransomware is capable of forcing Windows machines to reboot into Safe Mode. Zeppelin ransomware, on the other hand, was responsible for infecting healthcare and IT organizations across Europe and the U.S.

We found new iterations of Trickbot with updates on its password-grabbing module, all targeting new apps and services.

Ryuk’s decryptor tool — provided by the threat actors behind the ransomware to victims who have paid ransom demands — could actually cause data loss instead of reinstating file access to users.

A BEC campaign successfully steals US$1 million seed funding meant for an Israeli startup from a Chinese venture capital firm.