The DNSpionage attack group is now using a new backdoor called Karkoff, which may have ties to the OilRig leaks as well.
Bromium researchers have been tracking a phishing and malware campaign, possibly linked to the Necurs botnet, that uses infrastructure in the U.S.
Researchers are still trying to figure out how LockerGoga infects its targets, and what the group behind this damaging ransomware variant really wants. Can't be just money.
From an attacker’s perspective, the wider the net cast, the more number of potential victims caught. So it’s no surprise that Recorded Future research indicates attackers continue to rely heavily on exploits targeting Microsoft applications.
Two new kinds of point-of-sale malware have emerged recently and have been seen in use against various targets.