Cybersecurity

Threat Insight

Cybersecurity research and commentary on malware, user actions, and other threats to information security
August 30, 2016

Fraudulent Social Media Accounts Continue to Phish for Banking Credentials

Proofpoint Staff

In early 2016, Proofpoint researchers identified a new form of social media-based phishing attack, called angler phishing.

August 25, 2016

Nightmare on Tor Street: Ursnif variant Dreambot adds Tor functionality

Proofpoint Staff

Proofpoint researchers track recent significant updates including Tor network and P2P communications in one of the most active Ursnif variants exploring campaigns across multiple geographies.

August 18, 2016

Dridex Returns To Action For Smaller, More Targeted Attacks

Proofpoint Staff

Proofpoint researchers have been tracking numerous small Dridex campaigns over the past few months, as well as a mid-sized campaign this week that point not to the displacement of Dridex by Locky but rather far more targeted distribution of the infamous banking Trojan, as well as potential impact in new geographies.

August 12, 2016

Bad News Bears - Panda Banker Starts Looking More Like a Grizzly

Proofpoint Staff

Proofpoint researchers track a large 2-day campaign employing the Zeus Panda banking Trojan to target banks in Europe and Australia, international online payment systems, and, interestingly, UK online casinos.

August 10, 2016

Election Spam Trumps Phishing As November Draws Closer

Proofpoint Staff

Proofpoint researchers take a closer look at current trends in malicious email messages and spam related to the upcoming election.

August 09, 2016

CryptFile2 Ransomware Returns in High Volume URL Campaigns

Proofpoint Staff

Proofpoint researchers track an ongoing ransomware campaign after first discovering the variant, known as CryptFIle2, in April.

July 28, 2016

Massive AdGholas Malvertising Campaigns Use Steganography and File Whitelisting to Hide in Plain Sight

Kafeine

Proofpoint and Trend Micro researchers collaborated to detect and analyze a sophisticated, previously undocumented malvertising campaign that exposed millions of users every day to attacks that employed steganography and multi-layered filtering.

July 26, 2016

Threat Actors Using Legitimate PayPal Accounts To Distribute Chthonic Banking Trojan

Proofpoint researchers discovered a new delivery mechanism for malware - PayPal money request messages with both a link to Chthonic and a socially engineered request for $100.

July 14, 2016

Spam, Now With a Side of CryptXXX Ransomware!

Proofpoint Staff

For the first time since Proofpoint researchers discovered CryptXXX, the ransomware is being distributed via malicious documents attached to email messages.

Pages

Stay Connected
TWITTER @THREATINSIGHT