Cybercrime & Digital Threats

Trend Micro’s Managed XDR (MxDR) and Incident Response (IR) teams recently investigated an incident involving a company that was hit by the Nefilim ransomware.

Threat actors use Evernote and other platforms such as Canva, Lucidpress, and Infogram as host pages for credential phishing.

Users of video conferencing app Zoom have been targeted using suspicious domains, malicious files, and ‘Zoom bombing’ as threat actors take advantage of work-from-home arrangements brought about by COVID-19.

At least 25 people allegedly including a kingpin were arrested for card fraud by Russian federal investigators.

There has been an influx of employees signing in remotely to corporate networks and using cloud-based applications. But this shift could also open doors to security risks. Where should security fit in?

New ransomware variant Nefilim is distributed through exposed Remote Desktop Protocol (RDP) and threatens to release stolen data to the public.

Paradise ransomware can now spread through Internet Query Files.

Trend Micro researchers detected a new Ursnif campaign that targets Japan and spreads through malicious word document files.

New variants of notorious banking trojan Trickbot was distributed via DLL and had features that focus on Windows 10.