MnuBot
Malware

45f6ca06-eec3-4ffc-9a71-7659da5cd9f7

 

Attackers are using the malware – dubbed MnuBot –mainly in Brazil to perform illegal transactions on victims’ open banking sessions.

Once it has infected a system, MnuBot also uses a tricky social engineering method called a full-screen overlay form, which keeps the user waiting while the attacker commits the fraud.

Source: Threatpost

How do you protect yourself?

Proper security measures must be in place to defend against MnuBot malware and similar threats. Having proper up-to-date endpoint and firewall security provides a cross-generational blend of threat defense techniques to protect systems from cryptocurrency-mining malware.

 

CVE
2018-11235

Threat Meter

 

CVE-2018-11235 can lead to arbitrary code execution when a user operates in a malicious repository.

The CVE-2018-11235 could be exploited by an attacker to set up a malformed Git repository containing a specially-built Git submodule. The attacker needs to trick victims into clone the rogue repository to execute arbitrary code on users’ systems.

Source: Security Affairs

How do you protect yourself?

Ensure your software is up-to-date and that you have proper firewall and endpoint systems setup within your network.

 

Cryptomix
Ransomware

Threat Meter

 

A new variant of the Cryptomix Ransomware that appends the .BACKUP extension to encrypted files, changes the contact email, and slightly changes the ransom note’s name.

Source: BleepingComputer

How do you protect yourself?

Proper security measures must be in place to defend against Cryptomix Ransomware and similar threats. Having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from cryptocurrency-mining malware.