CYBERGEFAHR - BOOK RELEASED IN GERMAN
Famous German publisher Springer launched ‘Cybergefahr’ in the D-A-CH countries, a book written by Eddy Willems, G DATA’s Security Evangelist.
CYBERGEFAHR - BOOK RELEASED IN GERMAN
Famous German publisher Springer launched ‘Cybergefahr’ in the D-A-CH countries, a book written by Eddy Willems, G DATA’s Security Evangelist.
Invoices that might double in size
Since G DATA SecurityLabs have just reported about the risks posed by Dridex, there have been new alerts. In the latest campaigns, attackers are trying to take files from computers as "hostages". They do so by distributing ZIP archives with malicious content via email. If the user opens the files,…
DRIDEX – THE COMEBACK KING
The next wave of finance malware is doing the rounds – and this time the attackers of German-speaking targets have switched to using typical subjects for the end of the year to lure victims into their trap: tax refunds and overdue invoices aimed at private individuals. However, they are also sending…
New Dridex infection vector identified
Malware authors can sometimes be creative in order to manipulate their human targets on the one hand and to circumvent security products, too. The experts of G DATA’s SecurityLabs analyzed a specially crafted Microsoft Word document the attackers used to install a rather famous banking Trojan called…
Dissecting the “Kraken”
In January 2015, unidentified attackers attempted to infiltrate a multi-national enterprise based in the United Arab Emirates, using a spear phishing attack with a crafted MS Word document attached to the message. Once it has reached its target, the payload used was designed to work as an…
The Andromeda/Gamarue botnet is on the rise again
Attacks carried out with documents pepped up with macros seem to become in vogue again. G DATA’s security experts have analyzed several cases within the last weeks, in which active content in documents triggers an infection. The experts want to explain two different approaches for the same current…
Dubious casino tips being distributed via spam email
In the last few hours, many people have been receiving minimalistic – presumably spam – emails that unsettle the recipients. The text field contains just a URL – no salutation, no other text. If curious recipients click on the link, they will land on a promotional web page for online casinos.
Spam campaign still spreading: banking Trojan Bebloh circulated as email attachment
Another banking Trojan is now being distributed as part of the currently observed spam campaign: Bebloh. This is known for being sent as an email attachment – precisely as it is in the latest instance. It is possible that copycats have jumped onto the first scam, as experts at G DATA SecurityLabs…
Massive spam campaign returns: Cridex successor Swatbanker is spread
The attackers are sending out highly professional looking emails in the name of several large telecommunications providers and German banks: the reputation of Deutsche Telekom and Vodafone as well as that of Volksbank/Fiducia and Sparkasse is currently being misused for these waves of spam. The…
Attackers misuse the good reputation of AV companies to spread malware
Experts at G Data SecurityLabs have been made aware of a nasty scam that attackers are currently using to spread specific variants of the ZeuS banking Trojan. Fake invoices with an infected attachment claim to have been scanned for malware and rated as harmless by G Data or Sophos – which is a…