Roman Marshanski & Vitali Kremez write: BazarBackdoor is the newer preferred stealthy covert malware leveraged for high-value targets part of the TrickBot group toolkit arsenal. It consists of two components: a loader and a backdoor. [1] Loaders are an essential part of any cybercrime campaign. They start the infection chain by distributing the payload. In…
New action to combat ransomware ahead of U.S. elections
Tom Burt, Corporate Vice President, Customer Security & Trust for Microsoft, explains: Today we took action to disrupt a botnet called Trickbot, one of the world’s most infamous botnets and prolific distributors of ransomware. As the United States government and independent experts have warned, ransomware is one of the largest threats to the upcoming elections. Adversaries can use ransomware to infect…
MI: Walled Lake school district says it’s been hacked
ClickOnDetroit reports: In an email sent to parents late Sunday, Walled Lake Consolidated School District says a system outage has been linked to a cyberattack. The hack will not impact virtual learning. Superintendent Kenneth Gutman said virtual learning will proceed as normal when classes resume Monday morning. Read more on ClickOnDetroit to read the district’s…
Report: U.S. Cyber Command Behind Trickbot Tricks
Brian Krebs reports: A week ago, KrebsOnSecurity broke the news that someone was attempting to disrupt the Trickbot botnet, a malware crime machine that has infected millions of computers and is often used to spread ransomware. A new report Friday says the coordinated attack was part of an operation carried out by the U.S. military’s Cyber Command. Read more…
The most common malicious email attachments infecting Windows
Lawrence Abrams reports: To stay safe online, everyone needs to recognize malicious attachments that are commonly used in phishing emails to distribute malware. When distributing malware, threat actors create spam campaigns that pretend to be invoices, invites, payment information, shipping information, eFaxes, voicemails, and more. Included in these emails are malicious Word and Excel attachments,…
Hacker groups chain VPN and Windows bugs to attack US government networks
Catalin Cimpanu reports: Hackers have gained access to government networks by combining VPN and Windows bugs, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) said in a joint security alert published on Friday. Attacks have targeted federal and state, local, tribal, and territorial (SLTT) government networks. Attacks against non-government…