all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Unwrapping Ursnifs Gifts

Add to bookmarks
Jan. 9, 2023, 2:20 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

In late August 2022, we investigated an incident involving Ursnif malware, which resulted in Cobalt Strike being deployed. This was followed by the threat actors moving laterally through-out the environment using an admin account.


The Ursnif malware family (also commonly referred to as Gozi or ISFB) is one of oldest banking trojans still active today. It has an extensive past of code forks and evolutions that has lead to several active variants in the last 5 years including Dreambot, IAP, …

account august banking banking trojans cobalt cobalt strike code environment family gifts gozi incident isfb malware moving strike threat threat actors trojans ursnif ursnif malware

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Friday, April 26th, 2024 https://isc.sans.edu/podcastdetail/8956, (Fri, Apr 26th) an hour ago | malware.news
topic
Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359 4 hours ago | malware.news
adam adam shostack article link +8
How to change your IP address, why you'd want to - and when you shouldn't 4 hours ago | malware.news
access address a network article +11
Rubrik IPO signals potential cybersecurity-led tech market revival 5 hours ago | malware.news
article cybersecurity experts ipo +9
Issues Resolving Symbols on Windows 11 on ARM64 6 hours ago | malware.news
arm64 blog blog post development +8
Investigating industrial control systems using Microsoft’s ICSpector open-source framework 6 hours ago | malware.news
blog control control systems framework +9
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs 7 hours ago | malware.news
article broadcom brocade bugs +9
Navigating the cyber seas: Clarity, compliance, and unified endpoint management 7 hours ago | malware.news
article can clarity compass +10
These SMBs are hot threat targets but they're shrugging off security help 9 hours ago | malware.news
article companies cybersecurity demand +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs