• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Lokibot, AgentTesla Grow in January 2023’s Most Wanted Malware List

You are here: Home / General Cyber Security News / Lokibot, AgentTesla Grow in January 2023’s Most Wanted Malware List
February 14, 2023

Check Place has produced its World-wide Threat Index report for January 2023, which displays AgentTesla returning to the 3rd location (from the ninth in December 2022) in the January 2023 Most Wanted Malware list. The Lokibot infostealer has also grown substantially, from not being in the best 10 list to next position.

Additional, the infostealer Vidar has returned to the prime 10 list following an raise in cases of “brandjacking,” and was observed spreading by means of bogus domains proclaiming to be related with distant desktop software package organization AnyDesk.

“The malware utilized URL jacking for different well-liked apps to redirect individuals to a one IP deal with claiming to be the official AnyDesk internet site. The moment downloaded, the malware masqueraded as a legit installer to steal sensitive info,” Look at Place wrote. 

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


The most current edition of the company’s international danger index also recognized a main marketing campaign dubbed “Earth Bogle” that relied on the njRAT malware and specific entities throughout North Africa and the Center East.

“The attackers made use of phishing e-mail that contains geopolitical themes, enticing users to open up malicious attachments,” reads the report. “Once downloaded and opened, the Trojan can infect devices, letting attackers to carry out various intrusive actions to steal delicate information and facts.”

Qbot remained the most preferred malware in January 2023, and the industries targeted far more continuously by menace actors (schooling/research, governing administration/armed forces and health care) remained the exact compared to December 2022.

The web server flaw that uncovered GitHub repository information and facts in Oct was at the top of the most exploited vulnerabilities in January, adopted by HTTP headers remote code execution (RCE) flaws and the MVPower DVR RCE bug.

“Once again, we’re seeing malware teams use reliable brands to distribute viruses, with the goal of stealing personal identifiable data. I are not able to stress more than enough how crucial it is that people today pay back consideration to the links they are clicking on to guarantee they are reputable URLs,” commented Maya Horowitz, VP of study at Check Place Software.

“Look out for the security padlock, which suggests an up-to-day SSL certificate, and watch for any hidden typos that may possibly advise the website is destructive.”

Situation in place, a malicious deal working with typosquatting procedures was lately identified by ReversingLabs on the open up-source JavaScript npm repository.


Some areas of this short article are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News Chinese Hackers Infiltrate South American Diplomatic Networks
Next Post: Update Now: Microsoft Releases Patches for 3 Actively Exploited Windows Vulnerabilities update now: microsoft releases patches for 3 actively exploited windows»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York
  • LockBit 3.0 Ransomware: Inside the Cyberthreat That’s Costing Millions
  • FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps
  • Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets
  • Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm
  • Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips
  • Free decryptor released for Conti ransomware variant infecting hundreds of organisations
  • Bitwarden to release fix for four-year-old vulnerability
  • THN Webinar: 3 Research-Backed Ways to Secure Your Identity Perimeter
  • New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks

Copyright © TheCyberSecurity.News, All Rights Reserved.