AppRiver Update

Cybersecurity News and Threat Intelligence for Business

TrickBot Campaign Spoofs Dun & Bradstreet

on September 05, 2018 | by David Pickett | Digital Degenerate, securetide, macro malware

Trickbot Spoofs Dun & Bradstreet On Wednesday, Sept. 4, in just under an hour's time AppRiver's SecureTide malware engine stopped 103,791 malicious Word documents destined to clients. The campaign was designed to drop the Trickbot Trojan onto an unsuspecting users system. This particular attack ... read more

HMRC-themed emails carry Trickbot infection

on June 11, 2018 | by Troy Gill | AppRiver, Digital Degenerate, malware, Ransomware, Security Risks, Trickbot

A cybercrime group is currently targeting businesses in the UK with malware-laden emails containing the banking Trojan known as Trickbot. In the past years, several malware families have been seen heavily targeting the UK in attempts to spread banking Trojans looking to gain access to business and ... read more

Phony HSBC Emails Carry Spyware Infection

on April 04, 2018 | by Troy Gill | Digital Degenerate, Fake HSBC, Hancitor, HSBC malware, spyware, Trickbot

Today we are seeing a malware push from the Necurs botnet attempting to distribute a Spyware Trojan via the Hancitor downloader. The malicious email campaign is somewhat cleverly disguised as an encrypted email from HSBC Financial. read more

Warning! Trojan Droppers Exploiting Symbolic Link …

on February 12, 2018 | by David Pickett | Digital Degenerate, dropper, excel, malware, remote access trojan, securetide, Security Risks, .slk, trojan downloader

Trojan Droppers Exploiting Symbolic Link FilesMalicious actors routinely attempt to confuse recipients of messages with obscure file extensions to load malicious files on the victims machine.For most users the .slk file is recognized in Microsoft Office software as an Excel file. However, as detaile ... read more

As Tax Season Looms, CPA Firms Targeted with Advan…

on January 18, 2018 | by Troy Gill | adwind, Digital Degenerate, email scams, malware, RAT, Security Risks, tax fraud, Trojan. IRS Email

As the 2018 tax season gets underway, we want to make sure everyone is aware of the many dangers we see surrounding this event each year. In fact, curiosity and uncertainty surrounding recent tax law changes may leave many individuals more susceptible to falling victim to one of the many tax-themed ... read more

Assassination Threats Demand Bitcoin Ransom

on December 12, 2017 | by David Pickett | AppRiver, assassination, bitcoin, Cybercrime, demand, Digital Degenerate, email security, fraud, ransom, scam, securetide, Security, Spam, threat

Assassination Threats Demand Bitcoin Ransom Processing more than a billion messages a month we tend to see the good, bad, and ugly emails of the internet. It's pretty rare a message will raise our eyebrows or fall into a "disturbing" category, especially for our team that sees the whole range of th ... read more

Malware Distributors Target Online Holiday Shopper…

on November 13, 2017 | by Troy Gill | adwind, Digital Degenerate, FedEx, malware, Security Risks, Virus, zbot, Zeus

As online holiday shopping gets into full swing we are on the lookout for holiday related threats that we should all be wary of. It’s likely that FedEx alone will deliver hundreds of millions of packages between Black Friday and Christmas Day. And with so many people expecting packages to be delive ... read more

New Ransomware Variant Abusing DDE Functionality i…

on October 19, 2017 | by Troy Gill | Asasin, Digital Degenerate, malware, Ransomware, Security Risks

This morning we began seeing a large volume of messages that ultimately lead to the install of the “Asasin” ransomware, aptly named after the naming convention used when encrypting the user’s files. We have been seeing this Ransomware type for about a week now but it is now relying on a new infectio ... read more

Move over Macros, Office DDE exploits arrive

on October 13, 2017 | by David Pickett | AppRiver, dde, Digital Degenerate, embedded object, excel, exploit, macros, malware, phishing, securetide, Security Risks, spearphishing, trojan, word

Move over macros, Office DDE exploits arrive! Office macros have been the primary choice of attacks by malicious actors for years. IT administrators and users have learned to be cautious before running macros. The Dynamic Data Exchange (DDE) protocol has been around much longer but hadn't been use ... read more