ursnif – PossibleThreat Articles

Gozi V3: tracked by their own stealth

December 24, 2019 0 Comments gozi, isfb, malware, SophosLabs Uncut, ursnif, visual basic

Credit to Author: sophoslabsbehavioural| Date: Tue, 24 Dec 2019 09:00:32 +0000

Gozi, also known as Ursnif or ISFB, is a banking trojan which has been around for a long time and currently multiple variations of the trojan are circulating after its source code got leaked. Every variant that is distributed has interesting aspects, with Gozi version 3 the most eye-catching in the field of detection evasion. […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/LaetYrage7Q” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Spelevo exploit kit debuts new social engineering trick

December 18, 2019 0 Comments EK, exploit kit, gozi, malvertising, qakbot, Qbot, Social engineering, Spelevo, Threat analysis, ursnif

Credit to Author: Jérôme Segura| Date: Wed, 18 Dec 2019 16:00:00 +0000

In order to maximize infection rate, threat actors are now launching the Spelevo exploit kit with a decoy adult site, social engineering users into downloading a malicious video player.

Categories:

Threat analysis

Tags: EK exploit kit Gozi malvertising Qakbot Qbot Social Engineering Spelevo Ursnif

Security Sophos

Emotet’s Central Position in the Malware Ecosystem

December 2, 2019 0 Comments azorult, bitpaymer, dridex, emotet, panda, Qbot, ryuk, SophosLabs Uncut, trickbot, ursnif, zeus

Credit to Author: Andrew Brandt| Date: Mon, 02 Dec 2019 14:01:28 +0000

As the world rolls into another Cyber Monday, and online shoppers continue their hunt for the best deals, SophosLabs wants to remind you that there’s a metaphorical malware elephant in the room that would like nothing more than to steal financial information, and the use of your computer, for nefarious ends. The Emotet Ecosystem infographic, […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/ItFCW7TqIXw” height=”1″ width=”1″ alt=””/>