Yet Another Archive Format Smuggling Malware
The use of novel disk image files to encapsulate malware distributed via spam has been a theme that ...
Read More
Stay Informed
Sign up to receive the latest security news and trends straight to your inbox from Trustwave.
Image File Trickery Part II: Fake Icon Delivers NanoCore
The .zipx file extension is used to denote that the ZIP archive format is compressed using advanced ...
Read MoreA Trump Sex Video? No, It's a RAT!
While reviewing our spam traps, a particular campaign piqued our interest primarily because the ...
Read MoreEvasive URLs in Spam: Part 2
A URL can be completely valid, yet still misleading. In this blog, we will present another ...
Read MoreRATs and Spam: The Node.JS QRAT
The Qua or Quaverse Remote Access Trojan (QRAT) is a Java-based RAT that can be used to gain ...
Read MorePhishINvite with Malicious ICS Files
In an earlier blog entitled “Phishing in the Cloud”, we outlined that threat actors are actively ...
Read MoreTrickBot Disguised as COVID-19 Map
Cybercriminals are continuously exploiting the Coronavirus (COVID-19) pandemic. In our quest to ...
Read MoreExcel Malspam: Password Protected … Not!
Early March of this year, we blogged about multiple malspam campaigns utilizing Excel 4.0 Macros in ...
Read MoreMore Excel 4.0 Macro MalSpam Campaigns
In light of the recent blog by my colleague Rodel Mendrez, we looked back at previous spam ...
Read MoreRATs Wrapped and Hidden in PNG
The Remote Access Tool (RAT) is one of the malware types we often encounter with our Security Email ...
Read MoreFake Windows Update Spam Leads to Cyborg Ransomware and Its Builder
Recently, fake Microsoft Windows Update emails were spammed with the following subject lines: ...
Read MoreDouble Loaded Zip File Delivers Nanocore
Most malware sent via emails is packaged in archives such as ZIP, RAR, and 7z (7-Zip). ...
Read MoreDocuments with IRM Password Protection Lead to Remcos RAT
Documents attached to emails are commonly used as the initial vector to deliver malware into a ...
Read More“Sexfavor” Email Scam Delivers Danabot
Sextortion has been a widely used theme in spam campaigns since Q1 of 2018. From simple crafted ...
Read MoreFake CIA Sextortion Scam Uses SatoshiBox
Another round of sextortion scam emails with a pdf attachment were pushed out recently claiming to ...
Read MoreSextortion Scam Now With Malicious Downloader
Sextortion scams were a hit campaign last year and are continuing in 2019 with a new trick – the ...
Read MoreSextortion Scam Now With Malicious Downloader
Sextortion scams were a hit campaign last year and are continuing in 2019 with a new trick – the ...
Read More