A novel and sophisticated backdoor malware named 'Deadglyph' was seen used in a cyberespionage attack against a government agency in the Middle East.
The FBI announced today the disruption of the Qakbot botnet in an international law enforcement operation that not only seized infrastructure but also uninstalled the malware from infected devices.
Threat actors are installing a malicious IIS web server module named 'Owowa' on Microsoft Exchange Outlook Web Access servers to steal credentials and execute commands on the server remotely.
Supermicro and Pulse Secure have released advisories warning that some of their motherboards are vulnerable to the TrickBot malware's UEFI firmware-infecting module, known as TrickBoot.
New research released today provides greater insight into the Emotet module created by law enforcement that will uninstall the malware from infected devices in April.
The notorious TrickBot malware mistakenly left a test module that is warning victims that they are infected and should contact their administrator.
The Trickbot banking trojan has evolved once again with a new malware spreading module that uses a stealth mode to quietly infect Windows domain controllers without being detected.
A new module for the TrickBot trojan has been discovered that targets the Active Directory database stored on compromised Windows domain controllers.