Web: https://www.reddit.com/r/cybersecurity/comments/z2sget/qakbot_alerts_nov_2022_strategic_insight/

Nov. 23, 2022, 3:46 p.m. | /u/_KR15714N

cybersecurity reddit.com

We have received some alerts about incidents related with an increasing activity of Qakbot. I'm looking for insights on how to detect and anticipate Qakbot activity on our network.
More than just a list of IoCs I'd like to know what's the best approach/strategy that you would recommend.
FYI this is one of the alerts: [https://cyber.gc.ca/en/alerts-advisories/ongoing-reports-qakbot-malware-incidents](https://cyber.gc.ca/en/alerts-advisories/ongoing-reports-qakbot-malware-incidents)

alerts cybersecurity insight nov qakbot

Senior Cloud Security Engineer

@ HelloFresh | Berlin, Germany

Senior Security Engineer

@ Reverb | Remote, US

I.S. Security Analyst

@ YVFWC | Yakima, WA

Territory Account Manager - Cybersecurity - Little Rock

@ Optiv | Little Rock, AR

Cybersecurity Network Engineer

@ Bitcoin Depot | Remote

Senior Solutions Architect, Prisma Cloud - Visibility, Compliance, and Security (EMEA)

@ Palo Alto Networks | Manchester, United Kingdom

Cloud Security Engineer

@ Snow Software | Solna, Sweden

Senior Security Engineer - 12 month contract - Outside IR35 - Northampton Area

@ Eurofins | Northampton, United Kingdom

Penetration Tester

@ Family Zone | Melbourne, Australia

Senior Consultant - II - Fortinet

@ Optiv | Bengaluru, Karnataka

Snr Professional Services Consultant - XSIAM

@ Palo Alto Networks | Madrid, Spain

Data Governor and Security Specialist

@ Dynatrace | Milan, Italy