Qakbot-backed phishing emails, distributing Windows shortcut files with potentially malicious content, continue despite the FBI-led Operation Duck Hunt disrupting part of the botnet infrastructure. Cybersecurity researchers suggest only command-and-control servers were impacted while spam delivery infrastructure wasn’t. Phishing emails include Zip archives that, once opened, install the Remcos backdoor and download ransomware like Knight. Qakbot remains affiliated with Knight, but its exact role is unclear.
Just days before its data might be leaked, Qantas Airways obtained a permanent injunction
In July, DataBreaches reported that Qantas had obtained a preliminary injunction prohibiting the publication of any customer data stolen from it in a cyberattack by
