Threat actors misusing Quick Assist in social engineering attacks leading to ransomware | allinfosecnews.com

May 16, 2024, 2:21 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Since mid-April 2024, Microsoft Threat Intelligence has observed the threat actor Storm-1811 misusing the client management tool Quick Assist to target users in social engineering attacks. Storm-1811 is a financially motivated cybercriminal group known to deploy Black Basta ransomware. The observed activity begins with impersonation through voice phishing (vishing), followed by delivery of malicious tools, including remote monitoring and management (RMM) tools like ScreenConnect and NetSupport Manager, malware like Qakbot, Cobalt Strike, and ultimately Black Basta ransomware.

MITIGATE …

actor april attacks basta black basta black basta ransomware client cybercriminal deploy engineering impersonation intelligence management microsoft microsoft threat intelligence phishing ransomware social social engineering social engineering attacks storm target threat threat actor threat actors threat intelligence tool voice voice phishing

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Update: file-magic.py Version 0.0.8 8 hours ago | malware.news

article didier didier stevens file +11

Ticketmaster confirms customer data breach 12 hours ago | malware.news

breach cloud cloud database customer +18

What the Biggest-Ever Botnet Takedown Means 1 day, 8 hours ago | malware.news

botnet distribution financial industrial +5

Okta Cross-origin Authentication Feature in Customer Identity Cloud Targeted in Credential Stuffing Attacks 1 day, 10 hours ago | malware.news

access attacks authentication cloud +22

OpenAI report reveals threat actors using ChatGPT in influence operations 1 day, 10 hours ago | malware.news

article campaigns chatgpt disruption +12

Fake Bahrain Government Android App Steals Personal Data Used for Financial Fraud 1 day, 10 hours ago | malware.news

android android app app bahrain +17

Nearly 6M WordPress sites may be affected by bugs in 3 plug-ins 1 day, 11 hours ago | malware.news

article attacks bugs fastly +11

Senator Calls for FTC, SEC Probe Into UnitedHealth’s ‘Negligence’ in Breach 1 day, 12 hours ago | malware.news

article attack board breach +17

Vulnerability impacting Check Point Network Security Gateways (CVE-2024-24919) 1 day, 12 hours ago | malware.news

article canadian canadian centre for cyber security check +14

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com