• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Spam

BEBLOH Expands to Japan in Latest Spam Attack
  • Posted on:July 5, 2016 at 7:42 pm
  • Posted in:Malware, Spam
  • Author:
    Janus Agcaoili (Threat Response Engineer)
0

An old banking Trojan has been operating in Europe on a low level has spiked in activity after migrating to Japan. Cybercriminals are using local brand names such as local ISP providers and legitimate looking addresses to fool users into downloading malware that can steal information by monitoring browsers, file transfer protocol (FTP) clients, and mail clients. Its targets? Mostly rural banks.

BEBLOH is a banking Trojan that has been around since as early as 2009. It has outlived several competitors including Zeus, and SpyEye. It is designed to steal money from unsuspecting victims right off their bank accounts without them even noticing. BEBLOH always came up with new defensive measures to avoid AV products, and this time is no different. BEBLOH is also known for hiding in memory and creating a temporary new executable file upon shutdown, and deleting said file after re-infecting the system.

Read More
Tags: banking TrojanBEBLOHSpam

DRIDEX Spam Runs Resurface Against US Targets
  • Posted on:November 25, 2015 at 4:36 am
  • Posted in:Malware, Spam
  • Author:
    Ryan Flores (Threat Research Manager)
2

DRIDEX is steadily regaining its footing in the US just over a month after its takedown orchestrated by US and UK law enforcement agencies. Taking down servers is a significant step in crippling botnets, but unless all infrastructure are destroyed and all threat actors are caught, threats like DRIDEX are bound to resurface. As such, it…

Read More
Tags: DRIDEXfinancial spamonline banking malwareSpam

Businesses Held for Ransom: TorrentLocker and CryptoWall Change Tactics
  • Posted on:September 22, 2015 at 9:03 pm
  • Posted in:Bad Sites, Malware, Spam
  • Author:
    Paul Pajares (Fraud Analyst) and Jon Oliver (Senior Architect)
0

Perpetrators behind ransomware have moved away from targeting consumers and tailored their attacks to extort small and medium-sized businesses (SMBs).This business segment make potentially good targets for ransomware since small businesses are less likely to have the sophisticated solutions that enterprises have. And at the same time, the owners often have the capacity to pay….

Read More
Tags: cryptoransomwareCryptoWallransomwareSpamTorrentLocker

Macro Threats and Ransomware Make Their Mark: A Midyear Look at the Email Landscape
  • Posted on:August 31, 2015 at 1:14 pm
  • Posted in:Ransomware, Spam
  • Author:
    Maydalene Salvador (Anti-spam Research Engineer)
0

Email can be considered a big business—for cybercrime. In 2014, 196.3 billion emails were sent and received daily. Of that number, 108.7 billion were business emails. With the volume of business emails sent daily, it would be unimaginable for cybercriminals not to take advantage of email to target big businesses. And those attempts can result in million-dollar…

Read More
Tags: 1H 2015 spam roundupemailemail roundupmacroSpamspam roundup

Macro-based Malware Increases Along with Spam Volume, Now Drops BARTALEX
  • Posted on:March 24, 2015 at 4:44 pm
  • Posted in:Malware, Spam
  • Author:
    Maydalene Salvador (Anti-spam Research Engineer)
1

Early this year Microsoft reported an increase in macro-related threats being used to spread malware via spam. Similarly, we’ve been seeing a drastic increase in spammed emails with attached Microsoft Word documents and Microsoft Excel spreadsheets that come with embedded macros. Macros are a set of commands or code that are meant to help automate…

Read More
Tags: bartalexmacro malwareMicrosoft OfficeSpam
Page 1 of 2612 › »

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Business Email Compromise

  • How can a sophisticated email scam cause more than $2.3 billion in damages to businesses around the world?
    See the numbers behind BEC

Latest Ransomware Posts

  • Victims Lost US$1B to Ransomware
  • After WannaCry, UIWIX Ransomware and Monero-Mining Malware Follow Suit
  • Massive WannaCry/Wcry Ransomware Attack Hits Various Countries
  • Cerber Version 6 Shows How Far the Ransomware Has Come (and How Far it’ll Go)
  • Cerber Starts Evading Machine Learning

Ransomware 101

  • This infographic shows how ransomware has evolved, how big the problem has become, and ways to avoid being a ransomware victim.
    Check the infographic

Popular Posts

  • Massive WannaCry/Wcry Ransomware Attack Hits Various Countries
  • After WannaCry, UIWIX Ransomware and Monero-Mining Malware Follow Suit
  • Persirai: New Internet of Things (IoT) Botnet Targets IP Cameras
  • Pawn Storm Abuses Open Authentication in Advanced Social Engineering Attacks
  • Cerber Version 6 Shows How Far the Ransomware Has Come (and How Far it’ll Go)

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.