AppRiver Update

Cybersecurity News and Threat Intelligence for Business

Move over Macros, Office DDE exploits arrive

on October 13, 2017 | by David Pickett | AppRiver, dde, Digital Degenerate, embedded object, excel, exploit, macros, malware, phishing, securetide, Security Risks, spearphishing, trojan, word

Move over macros, Office DDE exploits arrive! Office macros have been the primary choice of attacks by malicious actors for years. IT administrators and users have learned to be cautious before running macros. The Dynamic Data Exchange (DDE) protocol has been around much longer but hadn't been use ... read more

Social Engineering Attack Escalation

on August 17, 2017 | by David Pickett | attack, Digital Degenerate, phishing, Ransomware, sans, securetide, Security Risks, social engineering, Spam, survey, trojan

Attack Overview and Statistics SANS Institute conducted a survey on how attackers were able to compromise user devices. They found 74 percent entered via an email attachment or email links, 48 percent from web based drive-by or download, and 30 percent through application vulnerabilities. Phishin ... read more

OSX & Windows Trojans Targeting Switzerland

on June 09, 2017 | by David Pickett | aptordoc, .ch, Digital Degenerate, Mal/DocLnk-B, malware, OSX, securetide, Security Risks, switzerland, trojan, w97m.dropper

This morning a unique campaign targeting Macs has caught our attention. This attempt contained a .zip file carrying a Mac (OSX) trojan known as Aptordoc (OSX.Dok). read more

Hancitor Picking Up Steam

on June 02, 2017 | by David Pickett | AppRiver, botnet, Chanitor, Digital Degenerate, Hancitor, macros, malware, securetide, Security Risks, Spam, TorDal, trojan, word

The Hancitor (aka Chanitor & TorDal) malicious downloader has been picking up steam. read more

Wanted: Your Computer for Mining!

on May 04, 2017 | by David Pickett | altcoins, bitcoin, cryptocurrency, Digital Degenerate, malware, mining, monero, SecureSurf, Security Risks, trojan

Many have heard the term bitcoin in the past and recognize that as a digital currency. Bitcoin is not the only player out there, just the most recognized. The others are unofficially termed Altcoins for alternative coins. Digital or cryptocurrencies are created by a process called mining. This i ... read more

Malicious Macros in Fake Adobe Messages

on January 28, 2016 | by Troy Gill | Digital Degenerate, fake adobe emails, macro malware, tech tips, trojan, Uncategorized, Virus

Over the past six months we have seen an increase in the number of emails with malicious Word (.doc) attachments. These messages utilize the available functionality in a file type that is very familiar to basically every computer user. By using this technique the attacker can increase the chances th ... read more

Keylogger Sending Plain Text Emails

on October 07, 2015 | by Jonathan French | Digital Degenerate, keylogger, knight, logger, malware, SMTP, trojan

I ran across an interesting piece of keylogging malware that uses a pre-built keylogger named Knight Logger. This particular keylogger is openly available for purchase online by its author. Of course it's labeled for educational purposes only and says you must have the computer owner's permission to ... read more

Amazon themed malware targets Crypto Currency

on June 11, 2015 | by Troy Gill | bitcoin, Fareit malware, trojan, Uncategorized, Virus

Over the past week we have been monitoring (and blocking) a stream of malicious emails attempting to pose as legitimate Amazon purchase confirmations. The messages simply state that your order has been confirmed and contains a small amount of details. The user being target is directed to the attache ... read more

Forged Best Buy Emails Distribute Malware

on December 04, 2014 | by Troy Gill | best buy, Digital Degenerate, malware, trojan, Uncategorized, Virus

Fake Best Buy purchase confirmations attempting to spread malware have been circulating for the past week. These messages are simple. They appear with “Best Buy” in the [from] field and they inform the recipient that an order has been placed with Best Buy which needs to be confirmed for pick up. The ... read more

Windows Gadget Malware

on May 16, 2014 | by Jonathan French | Digital Degenerate, gadget, malware, trojan, windows

This morning I ran across an interesting piece of malware. It was a Trojan downloader packaged as a .gadget file. Gadgets are the little things used in the Windows sidebar, like a clock, rss feeds, cpu info, etc. A gadget file is essentially a zip with some special features that allow you to install ... read more