April 2021’s Most Wanted Malware: Dridex Remains in Top Position Amidst Global Surge in Ransomware Attacks
The phishing emails used QuickBooks\xe2\x80\x99s branding and were trying to lure the user with fake payment notifications and invoices.
- The phishing emails used QuickBooks\xe2\x80\x99s branding and were trying to lure the user with fake payment notifications and invoices.
- Increasingly, these hackers are using double extortion methods, where they will steal sensitive data from an organization and threaten to release it publicly unless a payment is made.
- AgentTesla is an advanced RAT (remote access Trojan) that has been active since 2014 and functions as a keylogger and password stealer.
- Dridex contacts a remote server, sends information about the infected system and can also download and execute arbitrary modules on command.