Search cyberveille.decio.ch

It’s Raining Phish and Scams – How Cloudflare Pages.dev and Workers.dev Domains Get Abused | Trustwave

As they say, when it rains, it pours. Recently, we observed more than 3,000 phishing emails containing phishing URLs abusing services at workers.dev and pages.dev domains.

#trustwave #EN #2023 #Phish #Scams #Cloudflare #Pages.dev #Workers.dev

·trustwave.com·Jul 11, 2023

It’s Raining Phish and Scams – How Cloudflare Pages.dev and Workers.dev Domains Get Abused | Trustwave

Microsoft Encrypted Restricted Permission Messages Deliver Phishing | Trustwave

Over the past few days, we have seen phishing attacks that use a combination of compromised Microsoft 365 accounts and .rpmsg encrypted emails to deliver the phishing message.

#trustwave #EN #2023 #Phishing #Microsoft #Email #Microsoft-365 #rpmsg #encrypted #M365

·trustwave.com·Jun 15, 2023

Microsoft Encrypted Restricted Permission Messages Deliver Phishing | Trustwave

Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362)

On May 31, threat actors were discovered targeting a critical zero day in MOVEit Transfer software resulting in escalated privileges and unauthorized data access. The vulnerability being exploited is an SQL injection and has since been patched. Resources links, including one for the patch, are at the bottom of this post.

#trustwave #EN #2023 #0-day #MOVEit #CVE-2023-34362 #analysis

·trustwave.com·Jun 6, 2023

Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362)

Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies

Trustwave SpiderLabs uncovered a new strain of malware that it dubbed Rilide, which targets Chromium-based browsers such as Google Chrome, Microsoft Edge, Brave, and Opera.

#trustwave #c2023 #EN #Cryptocurrencies #Rilide #Stealer-Extension #Chromium-based #Browser #RAT #Ekipa #Extension

·trustwave.com·Apr 5, 2023

Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies

Trustwave SpiderLabs uncovered a new strain of malware that it dubbed Rilide, which targets Chromium-based browsers such as Google Chrome, Microsoft Edge, Brave, and Opera.

#trustwave #c2023 #EN #Cryptocurrencies #Rilide #Stealer-Extension #Chromium-based #Browser #RAT #Ekipa #Extension

·trustwave.com·Apr 5, 2023

Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies

A Noteworthy Threat: How Cybercriminals are Abusing OneNote

Threat actors are taking advantage of Microsoft OneNote's ability to embed files and use social engineering techniques, such as phishing emails and lures inside the OneNote document, to get unsuspecting users to download and open malicious files.

#trustwave #EN #2023 #Microsoft #OneNote #phishing #malicious #analysis

·trustwave.com·Mar 8, 2023

A Noteworthy Threat: How Cybercriminals are Abusing OneNote

Threat actors are taking advantage of Microsoft OneNote's ability to embed files and use social engineering techniques, such as phishing emails and lures inside the OneNote document, to get unsuspecting users to download and open malicious files.

#trustwave #EN #2023 #Microsoft #OneNote #phishing #malicious #analysis

·trustwave.com·Mar 8, 2023

A Noteworthy Threat: How Cybercriminals are Abusing OneNote

HTML Smuggling: The Hidden Threat in Your Inbox

Last October, Trustwave SpiderLabs blogged about the use and prevalence of HTML email attachments to deliver malware and phishing for credentials.

#trustwave #EN #2023 #HTML #Threat #SpiderLabs #email #phishing #malware

·trustwave.com·Feb 9, 2023

HTML Smuggling: The Hidden Threat in Your Inbox

Last October, Trustwave SpiderLabs blogged about the use and prevalence of HTML email attachments to deliver malware and phishing for credentials.

#trustwave #EN #2023 #HTML #Threat #SpiderLabs #email #phishing #malware

·trustwave.com·Feb 9, 2023

HTML Smuggling: The Hidden Threat in Your Inbox

Archive Sidestepping: Emotet Botnet Pushing Self-Unlocking Password-Protected RAR

Trustwave SpiderLabs’ spam traps have identified an increase in threats packaged in password-protected archives with about 96% of these being spammed by the Emotet Botnet. In the first half of 2022, we identified password-protected ZIP files as the third most popular archive format used by cybercriminals to conceal malware.

#trustwave #en #2022 #Emotet #botnet #self-unlocking #rar #analysis #spam #archives

·trustwave.com·Oct 22, 2022

Archive Sidestepping: Emotet Botnet Pushing Self-Unlocking Password-Protected RAR

Trustwave SpiderLabs’ spam traps have identified an increase in threats packaged in password-protected archives with about 96% of these being spammed by the Emotet Botnet. In the first half of 2022, we identified password-protected ZIP files as the third most popular archive format used by cybercriminals to conceal malware.

#trustwave #en #2022 #Emotet #botnet #self-unlocking #rar #analysis #spam #archives

·trustwave.com·Oct 22, 2022

Archive Sidestepping: Emotet Botnet Pushing Self-Unlocking Password-Protected RAR

Overview of the Cyber Weapons Used in the Ukraine

Observing the ongoing conflict between Russia and Ukraine, we can clearly see that cyberattacks leveraging malware are an important part of modern hybrid war strategy.

#trustwave #EN #2022 #Russia #War #Ukraine #Cyber #Weapons #cyberattacks #Russia-Ukraine-war #cyber-weapons #hybrid

·trustwave.com·Aug 19, 2022

Overview of the Cyber Weapons Used in the Ukraine

Observing the ongoing conflict between Russia and Ukraine, we can clearly see that cyberattacks leveraging malware are an important part of modern hybrid war strategy.

#trustwave #EN #2022 #Russia #War #Ukraine #Cyber #Weapons #cyberattacks #Russia-Ukraine-war #cyber-weapons #hybrid

·trustwave.com·Aug 19, 2022

Overview of the Cyber Weapons Used in the Ukraine

Observing the ongoing conflict between Russia and Ukraine, we can clearly see that cyberattacks leveraging malware are an important part of modern hybrid war strategy.

#trustwave #EN #2022 #Russia #War #Ukraine #Cyber #Weapons #cyberattacks #Russia-Ukraine-war #cyber-weapons #hybrid

·trustwave.com·Aug 19, 2022

Overview of the Cyber Weapons Used in the Ukraine

IPFS: The New Hotbed of Phishing

We have observed more than 3,000 emails containing phishing URLs that have utilized IPFS for the past 90 days and it is evident that IPFS is increasingly becoming a popular platform for phishing websites.

#trustwave #2022 #EN #Phishing #IPFS

·trustwave.com·Jul 29, 2022

IPFS: The New Hotbed of Phishing

We have observed more than 3,000 emails containing phishing URLs that have utilized IPFS for the past 90 days and it is evident that IPFS is increasingly becoming a popular platform for phishing websites.

#trustwave #2022 #EN #Phishing #IPFS

·trustwave.com·Jul 29, 2022

IPFS: The New Hotbed of Phishing

We have observed more than 3,000 emails containing phishing URLs that have utilized IPFS for the past 90 days and it is evident that IPFS is increasingly becoming a popular platform for phishing websites.

#trustwave #2022 #EN #Phishing #IPFS

·trustwave.com·Jul 29, 2022

IPFS: The New Hotbed of Phishing