This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove 11
Remove 2014 Remove Analysis Remove Retail Remove Tools
article thumbnail

FBI warns US organizations of ProLock ransomware decryptor not working

Security Affairs

MAY 18, 2020

issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. ” In March, threat actors behind PwndLocker changed the name of their malware to ProLock, immediately after security firm Emsisoft released a free decryptor tool.

Ransomware 125
Ransomware Retail Access Security 125
article thumbnail

TA505 is expanding its operations

Security Affairs

MAY 29, 2019

The threat group is also known for its recent attack campaign against Bank and Retail business sectors, but the latest evidence indicates a potential expansion of its criminal operation to other industries too. Technical Analysis. The tool is able to grant remote access and full, direct control of the infected machine to the group.

IT 76
IT Retail Archiving File names 76
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

The stealthy email stealer in the TA505 hacker group’s arsenal

Security Affairs

MAY 16, 2019

In fact, many independent researchers pointed to a particular email attack wave probably related to the known TA505 hacking group , active since 2014 and focusing on Retail and Banking companies. Technical Analysis. The piece of malware under analysis were downloaded from “bullettruth[.com/out[.exe”,

Retail 79
Retail Passwords Communications Phishing 79
article thumbnail

TA505 Cybercrime targets system integrator companies

Security Affairs

NOVEMBER 12, 2019

The analysis of a malicious email revealed a possible raising interest of the TA505 cybercrime gang in system integrator companies. During a normal monitoring activity, one of the detection tools hits a suspicious email coming from the validtree.com domain. Technical Analysis. Introduction.

Computer and Electronics 44
Computer and Electronics Ransomware Security Retail 44
article thumbnail

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia. All threats use at least one obfuscation method to make the analysis harder. Technical Analysis. The MSHTA Drop Chain.

Manufacturing 137
Manufacturing e-Delivery IT Security 137
article thumbnail

Aggah: How to run a botnet without renting a Server (for more than a year)

Security Affairs

JANUARY 27, 2020

Experts from Yoroi-Cybaze ZLab have spotted new attack attempts directed to some Italian companies operating in the Retail sector linked to Aggah campaign. Recently, during our Cyber Defence monitoring operations, we spotted other attack attempts directed to some Italian companies operating in the Retail sector. Technical Analysis.

Retail 119
Retail IT Communications Access 119
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 55,000+ Insiders by signing up for our newsletter

About
Webinars
Awards
About
Editions
Webinars
Awards
Editions
Topics
Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024