Hackers are exploiting an old vulnerability in Microsoft Excel to distribute a new malware called ‘Agent Tesla.’ The malware can either clean up a database or gather intelligence based on the commands it receives from the hackers’ servers. A recent study by Zscaler ThreatLabz reveals that the malware is distributed through phishing campaigns and can wipe out stored information if necessary.
A JavaScript malware has been detected infecting servers in 40 financial institutions globally. This web-based malware targets popular banking applications, steals credentials, and drains funds from accounts. Hackers inject malware into the webpage framework of banking institutions, allowing them to take control and access currency transfer apps or use it for malvertising purposes.
AT&T Alien Labs researchers have discovered a new campaign where criminals are spreading JaskaGO malware among Windows and MacOS users. This malware, developed in the GO Programming language, exfiltrates information and deploys additional payloads. It checks for virtual environments or sandboxes to evade detection and operates according to the hackers’ commands.
Delft, a Denmark-based cybersecurity firm, suggests that blockchain technology can help mitigate malware risks but also contribute to its spread. Criminals can use the blockchain network to hide their tracks as soon as their code is triggered, creating a favorable environment for crypto-miners and potentially leading to the development of innovative malware tools.
Microsoft has issued an alert regarding the resurgence of QakBot malware, distributed through phishing campaigns impersonating IRS employees. QakBot, active since 2008, had its infrastructure seized by the FBI in 2022. However, a small campaign targeting the hospitality industry indicates the re-emergence of the criminals spreading the malware.
Key Points:
1. Hackers are exploiting an old vulnerability in Microsoft Excel to distribute the ‘Agent Tesla’ malware.
2. A JavaScript malware targets financial institutions to steal credentials and drain funds from accounts.
3. JaskaGO malware is being spread among Windows and MacOS users, exfiltrating information and deploying additional payloads.
4. Blockchain technology can both mitigate and contribute to the spread of malware.
5. QakBot malware has resurfaced through a phishing campaign impersonating IRS employees.