Enhance cybersecurity awareness and survivability for DoD, industry partners, and academia in the face of the ever-increasing threat of cyber attacks. Cybersecurity (CS) includes managing risks related to the use, processing, storage, and transmission of information and the systems and processes used for those purposes, including analog and physical form. CS includes information availability, identification and authentication, confidentiality, integrity, and non-repudiation as well as the economic considerations with respect to selection of CS techniques, CS processes, and industry trends.
LokiBot Info-Stealer Used in Spear Phishing Attack on US Company
This topic contains 1 reply, has 1 voice, and was last updated by 
-
Topic
-
On August 21, a spear-phishing malspam campaign was discovered by security researchers. In a spam email, the attackers encourage users to open an attachment from a “sender’s colleague” that is currently “out of office”. The attackers are clearly non-English as is evident from a typo in the message body. If a user decides to open the attachment, they will be infected with the LokiBot information stealer malware which grabs user’s “FTP credentials, stored email passwords, passwords stored in the browser, as well as a whole host of other credentials.” This strain of malware is not new as it has previously been delivered through other means.
-
Replies
-
https://www.fortinet.com/blog/threat-research/new-infostealer-attack-uses-lokibot.html
A few months ago the same IP address address used in the attack was associated with an attack on a German bakery. This led them to assume its being delivered through a new spam relay.
You must be logged in to reply to this topic.
