SEARCH
Archive
SVCReady Malware Emerges in Phishing Campaigns
A newly discovered malware loader is under active development and is executed via shellcode stored in a Word document.
IceApple Post-Exploitation Framework Deployed on Exchange Servers
Researchers have discovered a sophisticated post-exploitation framework being deployed on Microsoft Exchange servers to assist threat actors with credential harvesting and local reconnaissance.
After Microsoft Macro Malware Crackdown, Attackers Explore New Options
After Microsoft started blocking macros obtained from the internet by default, email attackers are exploring alternative techniques to distribute Emotet, Qakbot, IcedID and other payloads.
New Malware Framework Distributed Via Pay-Per-Install Service
The malware framework contains a loader, dropper and a remote access trojan with its own network communication protocol.
New Bumblebee Malware Loader in Active Development
Researchers speculate that the emerging loader is a replacement for the BazaLoader malware.