Phishing campaigns are using tactics similar to defunct trojan QakBot to deliver malware. Malware families, such as DarkGate and PikaBot, start with hijacked email threads and URLs with unique patterns that limit user access. DarkGate uses advanced techniques to elude antivirus systems and PikaBot has similar methods and behaviors to QakBot. Both can deliver additional malware, making them attractive to cybercriminals. They target a wide range of sectors and can lead to the delivery of advanced crypto mining software, reconnaissance tools, and ransomware.
Malware campaign abused flawed Avast Anti-Rootkit driver
Threat actors are exploiting a flawed Avast Anti-Rootkit driver to bypass detection, disable security tools and compromise targeted systems, Trellix researchers found. The malware corrupts
