IcedID Malware Revamped With Avoidance Capabilities

Posted by & filed under Ειδοποιήσεις.

The IcedID banking Trojan has recently been updated with additional evasion techniques, including a password-protected attachment, keyword obfuscation and Dynamic Link Library file that acts as a second-stage downloader, according to Juniper Threat Labs. The threat actors behind the campaign, first spotted in July, research their target before an attack to identify a handful of customer… Read more »

Valak malware steals credentials from Microsoft Exchange servers

Posted by & filed under Ειδοποιήσεις.

Classified initially as a malware loader, Valak has morphed into an information stealer that targets Microsoft Exchange servers to rob email login credentials and certificates from enterprises. Its original functionality remains, so it can still deliver other malware (banking trojans Ursnif and IcedID), but it now has plugins to run reconnaissance and steal sensitive info… Read more »