AppRiver Update

Cybersecurity News and Threat Intelligence for Business

TrickBot Campaign Spoofs Dun & Bradstreet

on September 05, 2018 | by David Pickett | Digital Degenerate, securetide, macro malware

Trickbot Spoofs Dun & Bradstreet On Wednesday, Sept. 4, in just under an hour's time AppRiver's SecureTide malware engine stopped 103,791 malicious Word documents destined to clients. The campaign was designed to drop the Trickbot Trojan onto an unsuspecting users system. This particular attack ... read more

Something Wicked This Way Comes – To Your Inbox

on July 05, 2018 | by Teresa Zwierzchowski | AppRiver, Email, hackers, phishing, Ransomware, SecureSurf, securetide, Security Risks, Security Vulnerablities, spearphishing

Hackers are smart – and only getting smarter. They are continually honing their attacks and searching for the weakest link – and oftentimes that is a company’s employees. read more

BEC Attacks Evolving - Phishing via XPS Files

on May 22, 2018 | by David Pickett | email fraud, phishing, securetide, Security Risks, social engineering, xps extension

We've seen it time after time, malicious actors routinely attempt to confuse recipients of messages with obscure or lesser-utilized file extensions. Over the past month, some phishing attempts using xps files instead of the typical pdf or doc/docx formats have been captured by our filters. The xps ... read more

Office 365 Business Email Compromise Attacks Proli…

on February 26, 2018 | by David Pickett | cybersecurity, Microsoft Office 365, phishing, securetide

Office 365 Business Email Compromise Attacks The Office 365 (O365) platform has experienced tremendous growth and there is no sign of that trend slowing. More businesses than ever reside with - or plan to migrate accounts to - the expanding Microsoft Business or Enterprise services. Scammers have t ... read more

Warning! Trojan Droppers Exploiting Symbolic Link …

on February 12, 2018 | by David Pickett | Digital Degenerate, dropper, excel, malware, remote access trojan, securetide, Security Risks, .slk, trojan downloader

Trojan Droppers Exploiting Symbolic Link FilesMalicious actors routinely attempt to confuse recipients of messages with obscure file extensions to load malicious files on the victims machine.For most users the .slk file is recognized in Microsoft Office software as an Excel file. However, as detaile ... read more

Necurs Botnet Launching Massive Ransomware Attacks

on December 26, 2017 | by David Pickett | AppRiver, botnet, globeimposter, locky, malware, necurs, Ransomware, securetide, Security Risks

****Update: 12/29/2017 9 A.M.**** Necurs botnet operators continue to show unpredictability. Following the afternoon blog update yesterday they turned up the volume. It ended up being our highest volume day of the year originating from the massive botnet. We blocked 49,784,485 million ransomware ... read more

Assassination Threats Demand Bitcoin Ransom

on December 12, 2017 | by David Pickett | AppRiver, assassination, bitcoin, Cybercrime, demand, Digital Degenerate, email security, fraud, ransom, scam, securetide, Security, Spam, threat

Assassination Threats Demand Bitcoin Ransom Processing more than a billion messages a month we tend to see the good, bad, and ugly emails of the internet. It's pretty rare a message will raise our eyebrows or fall into a "disturbing" category, especially for our team that sees the whole range of th ... read more

Move over Macros, Office DDE exploits arrive

on October 13, 2017 | by David Pickett | AppRiver, dde, Digital Degenerate, embedded object, excel, exploit, macros, malware, phishing, securetide, Security Risks, spearphishing, trojan, word

Move over macros, Office DDE exploits arrive! Office macros have been the primary choice of attacks by malicious actors for years. IT administrators and users have learned to be cautious before running macros. The Dynamic Data Exchange (DDE) protocol has been around much longer but hadn't been use ... read more