Cybercrime & Digital Threats

Cybercriminals behind Nemty ransomware close down their Ransomware-as-a-Service (RaaS) operation as they zero in on private schemes. This is confirmed through a post in a Russian hacker forum.

Fake installers of popular messaging apps such as Viber and WhatsApp are propagated via fraudulent Russian websites. The installers are believed to be adware.

Researchers detected the “Twin Flower” campaign that simulates increased clicks to boost network traffic, boosting SEO ranking and advertising revenue.

Trend Micro researchers detected a new courier service themed malicious spam campaign that uses ACE files as attachments.

Cybercriminals exploit a feature in Excel that allows users to hide sheets by hiding obfuscated suspicious formulas in a “Very Hidden” sheet.

Trend Micro’s Managed XDR (MxDR) and Incident Response (IR) teams recently investigated an incident involving a company that was hit by the Nefilim ransomware.

Threat actors use Evernote and other platforms such as Canva, Lucidpress, and Infogram as host pages for credential phishing.

Users of video conferencing app Zoom have been targeted using suspicious domains, malicious files, and ‘Zoom bombing’ as threat actors take advantage of work-from-home arrangements brought about by COVID-19.

At least 25 people allegedly including a kingpin were arrested for card fraud by Russian federal investigators.