Hackers are exploiting an old vulnerability in Microsoft Excel to distribute a new malware called ‘Agent Tesla.’ The malware can either clean up a database or gather intelligence based on the commands it receives from the hackers’ servers. A recent study by Zscaler ThreatLabz reveals that the malware is distributed through phishing campaigns and can wipe out stored information if necessary.
AT&T Alien Labs researchers have discovered a new campaign where criminals are spreading JaskaGO malware among Windows and MacOS users. This malware, developed in the GO Programming language, exfiltrates information and deploys additional payloads. It checks for virtual environments or sandboxes to evade detection and operates according to the hackers’ commands.
Delft, a Denmark-based cybersecurity firm, suggests that blockchain technology can help mitigate malware risks but also contribute to its spread. Criminals can use the blockchain network to hide their tracks as soon as their code is triggered, creating a favorable environment for crypto-miners and potentially leading to the development of innovative malware tools.
Microsoft has issued an alert regarding the resurgence of QakBot malware, distributed through phishing campaigns impersonating IRS employees. QakBot, active since 2008, had its infrastructure seized by the FBI in 2022. However, a small campaign targeting the hospitality industry indicates the re-emergence of the criminals spreading the malware.
1. Hackers are exploiting an old vulnerability in Microsoft Excel to distribute the ‘Agent Tesla’ malware.
3. JaskaGO malware is being spread among Windows and MacOS users, exfiltrating information and deploying additional payloads.
4. Blockchain technology can both mitigate and contribute to the spread of malware.
5. QakBot malware has resurfaced through a phishing campaign impersonating IRS employees.