Phishing Email Uses Google Ad Redirect to Steal Microsoft Credentials
Posted by AngelaWong, 01-08-2020Security researchers came across a phishing email that used a Google Ad redirect as a part of its efforts to steal victims’ Microsoft credentials. Cofense found that the email orig...
Bypassing Windows 10 UAC with mock folders and DLL hijacking
Posted by AngelaWong, 01-08-2020A new technique uses a simplified process of DLL hijacking and mock directories to bypass Windows 10's UAC security feature and run elevated commands without alerting a user. Windows UAC is a p...
Linux warning: TrickBot malware is now infecting your systems
Posted by AngelaWong, 31-07-20207/31/20: Update added below with information from Intezer Labs and a link to the malware sample. This article was originally published on July 30th, 2020. TrickBot's Anchor malware platform has ...
Abnormal Attack Stories: Sharepoint Attacks
Posted by AngelaWong, 29-07-2020In this attack, malicious actors make use of an automated message from Sharepoint to send phishing emails. Quick Summary of Attack Target Platform: Office 365Email Security: ProofpointMailboxes: 15,...
Blox Tales #11: Netflix Credential Phishing
Posted by AngelaWong, 29-07-2020Each Blox Tale will take a look at a targeted email attack, outline why it made its way into an inbox, and highlight how Armorblox was able to detect the attack. In this blog, we’ll focus on a c...
Ensiko: A Webshell With Ransomware Capabilities
Posted by AngelaWong, 29-07-2020Ensiko is a PHP web shell with ransomware capabilities that targets various platforms such as Linux, Windows, macOS, or any other platform that has PHP installed. The malware has the capability to rem...