all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Malvertising Used as Entry Vector for BlackCat, Actors Also Leverage SpyBoy Terminator

Add to bookmarks
June 30, 2023, 10:35 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

We found that malicious actors used malvertising to distribute malware via cloned webpages of legitimate organizations. The distribution involved a webpage of the well-known application WinSCP, an open-source Windows application for file transfer. We were able to identify that this activity led to a BlackCat (aka ALPHV) infection, and actors also used SpyBoy, a terminator that tampers with protection provided by agents.


Article Link: Malvertising Used as Entry Vector for BlackCat Actors Also Leverage SpyBoy Terminator


1 post - 1 …

alphv application blackcat distribution entry file file transfer identify infection led malicious malicious actors malvertising malware organizations terminator transfer well-known windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

‘Uncharted Territory:’ Companies Devise AI Security Policies 46 minutes ago | malware.news
ai security businesses companies don +14
Significant drop recorded in FBI searches of Section 702 database an hour ago | malware.news
act agency database fbi +8
Lumen DDoS Essentials: Your Shield Against Cyber Threats an hour ago | malware.news
applications business cto cyber +19
Cisco security advisory (AV24-236) 2 hours ago | malware.news
advisory article canadian canadian centre for cyber security +8
Malicious Life Podcast: The Source Code of Malicious Life 3 hours ago | malware.news
back code goes israeli +13
Vulnerabilities in employee management system could lead to remote code execution, login credential theft 3 hours ago | malware.news
check cisco cisco talos code +26
UnitedHealth CEO grilled over ‘clear national security threat’ from Change Healthcare hack 3 hours ago | malware.news
attack ceo change change healthcare +12
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 3 hours ago | malware.news
cisos development don hot +15
ADCS Attack Paths in BloodHound — Part 2 3 hours ago | malware.news
adcs article attack attack paths +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Sr. Cloud Security Engineer

@ BLOCKCHAINS | USA - Remote
View on infosec-jobs.com

Network Security (SDWAN: Velocloud) Infrastructure Lead

@ Sopra Steria | Noida, Uttar Pradesh, India
View on infosec-jobs.com

Senior Python Engineer, Cloud Security

@ Darktrace | Cambridge
View on infosec-jobs.com

Senior Security Consultant

@ Nokia | United States
View on infosec-jobs.com

Manager, Threat Operations

@ Ivanti | United States, Remote
View on infosec-jobs.com

Lead Cybersecurity Architect - Threat Modeling | AWS Cloud Security

@ JPMorgan Chase & Co. | Columbus, OH, United States
View on infosec-jobs.com
View more jobs