Mallox Ransomware Implements New Infection Strategy
Cyble analyzes Mallox Ransomware’s new infection chain, leveraging BatLoader to execute ransomware payloads.
Payload
Recent Emotet Spam Campaign Utilizing New Tactics
Cyble analyzes the recent Emotet campaign, which utilizes OneNote attachments as a novel approach to infect users.
New Medusa Botnet Emerging Via Mirai Botnet Targeting Linux Users
Cyble Analyzes Medusa botnet targeting Linux users via Mirai, performing Bruteforce, DDoS, and Ransomware attacks.
Bumblebee Returns with New Infection Technique
Cyble Research & Intelligence Labs analyzes a new infection chain of the Bumblebee loader malware being distributed via spam campaigns.
Targeted Attacks being carried out via DLL SideLoading
Cyble Analyzes how Threat Actors are leveraging Microsoft applications and DLL Sideloading to deliver Cobalt Strike Beacons
CVE-2022-30190 Actively Exploited in the Wild: MSDT Vulnerability Used For Spreading PowerShell Stealer
In this case, instead of Microsoft Word files, attackers used RTF files to download information stealer into the victim’s system.