"In addition to the new backConnect malware developed by Qbot operators, research has emerged tying zloader[4] activity to that of the BlackBasta ransomware operation. It is highly likely this new side loading backConnect malware has been or is going to be utilized to further ransomware attacks."
⬇️
"Qbot is Back.Connect"
👇
https://medium.com/walmartglobaltech/qbot-is-back-connect-2d774052369f

#CyberVeille #qbot #malware #BlackBasta

Proofpoint's Daniel Blackford is set to take the stage at Black Hat USA for a talk on law enforcement takedowns.

#OperationEndgame is just one botnet disruption that has made recent headlines. #Emotet, #Qbot, #Lockbit, and #Smokeloader are a few others.

Law enforcement cooperates on takedowns -- but are they effective? Be sure to catch Daniel's talk to examine the data!

Microsoft launches AI chatbot for spies
https://arstechnica.com/information-technology/2024/05/microsoft-launches-ai-chatbot-for-spies/ #microsoft #AI #LLM #airgap #spy #Confabulate #QBot

🤖 This week in cybersecurity news, an unfortunately named ransomware demanding over a HUNDRED MILLION DOLLARS! 💸

https://medium.com/@penquestr/the-sexi-140-million-ransom-parades-of-trojans-cyber-news-beat-6915f2eab673

#cyber #cybernews #tech #technews #technology #news #hack #hacking #cybersecurity #cybersecuritynews #informationsecurity #infosec #ESXi #VMware #Ivanti #Dlink #Hacker #hackers #Qbot

New #Qbot #malware variant uses fake Adobe installer popup for evasion

The misleading popup this campaign spawns “Adobe Setup” installs itself regardless of what you click.

As always be careful what you click and download.

#cybersecurity #security #infosec

https://www.bleepingcomputer.com/news/security/new-qbot-malware-variant-uses-fake-adobe-installer-popup-for-evasion/

Do #takedowns help stop #cybercriminal activity? 🤔

They do, to a certain extent, according to @recordedfuture's 2023 Adversary Infrastructure Report.

📰 Read story here: https://infosecurity-magazine.com/news/malware-takedowns-cybercrime/

#QakBot #QBot #Emotet #CobaltStrike #RAT #botnet #infostealer

#Qbot #QakBot

#Qbot malware returns in campaign targeting hospitality industry

https://www.bleepingcomputer.com/news/security/qbot-malware-returns-in-campaign-targeting-hospitality-industry/

Qakbot Gang Still Active Despite #FBI Takedown 🦆🔫❌

A #Qakbot affiliate is still deploying Ransom Knight #ransomware and the Remcos #backdoor via phishing emails, according to @TalosSecurity. #Qbot

https://www.infosecurity-magazine.com/news/qakbot-gang-still-active-despite/

📬 Qakbot: Behörden nahmen 700.000 Bots vom Netz
#Cyberangriffe #ITSicherheit #BenjaminKrause #CarstenMeywirth #ChristopherWray #FBI #Malware #Qakbot #QBot #RansomwareAngriff https://tarnkappe.info/artikel/cyberangriff/qakbot-behoerden-nahmen-700-000-bots-vom-netz-280164.html

"Duck Hunt" international police operation disrupts:
—700,000 computers infected with Qakbot dropper
—ransomware wielders relying on #Qbot
—52 servers used by criminals (seized)
—$9 million worth of cryptocurrency (seized)
https://www.databreachtoday.com/operation-duck-hunt-dismantles-qakbot-a-22959
@daveperera

「 #FBI 主導の #ダックハント 作戦でクアクボットを撃墜」： The Register

「フランス、ドイツ、オランダ、英国、ルーマニア、ラトビアからの支援により、法執行機関は過去3日間で、 #QBot ネットワークを維持するために使用されていた米国内外の52のサーバーを押収した。」

https://www.theregister.com/2023/08/29/duck_hunt_qakbot/

#prattohome #TheResister

And down goes Quakbot!

One of the most prolific #malware loaders over the last 15 years has been dismantled by the FBI.

How did they do it? By implementing a reverse uno card of sorts---making infected computers to download an uninstaller file.

A novel approach to getting rid of malware and 700K computers say thank you. https://www.fbi.gov/news/stories/fbi-partners-dismantle-qakbot-infrastructure-in-multinational-cyber-takedown #cybersecurity #security #qbot

U.S. Hacks QakBot, Quietly Removes Botnet Infections

https://krebsonsecurity.com/2023/08/u-s-hacks-qakbot-quietly-removes-botnet-infections/

#FederalBureauofInvestigation #U.S.DepartmentofJustice #LatestWarnings #TheComingStorm #MartinEstrada #Ransomware #DonAlway #Qakbot #Qbot #DOJ #fbi

U.S. Hacks QakBot, Quietly Removes Botnet Infections https://krebsonsecurity.com/2023/08/u-s-hacks-qakbot-quietly-removes-botnet-infections/ #FederalBureauofInvestigation #U.S.DepartmentofJustice #LatestWarnings #TheComingStorm #MartinEstrada #Ransomware #DonAlway #Qakbot #Qbot #DOJ #fbi

pew pew pew!! Bye bye, #qakbot #qbot #malware
Uninstaller packages were it's only weakness lol
https://techcrunch.com/2023/08/29/fbi-operation-qakbot-uninstall/

U.S. Hacks QakBot, Quietly Removes Botnet Infections - The U.S. government today announced a coordinated crackdown against QakBot, a comp... https://krebsonsecurity.com/2023/08/u-s-hacks-qakbot-quietly-removes-botnet-infections/ #federalbureauofinvestigation #u.s.departmentofjustice #latestwarnings #thecomingstorm #martinestrada #ransomware #donalway #qakbot #qbot #doj #fbi

「マルウェア ローダーの詳細: 今年これまでの攻撃の 80% を引き起こしたビッグ 3 」： The Register

「 #QBot、 #SocGholish 、 #Raspberry Robin の 3 つのマルウェア ローダーが、今年これまでに観察されたコンピュータやネットワークに対する攻撃の 80% の原因となっています。 」

https://www.theregister.com/2023/08/28/top_malware_loaders/

#prattohome #TheResister

Good day everyone! The ReliaQuest Threat Research team recently provided a wrap up of the most commonly used loaders, the top 80% which comprised of only three different malware! These big three are #QBot, #SocGholish, and #RaspberryRobin. THEN, they not only provided the data sheet to provide to your management or C-suite, they broke them down even further to include technical details as well! Thank you to the Threat Research team for such a great report, I hope you enjoy it as much as I did, and Happy Hunting!

The 3 Malware Loaders Behind 80% of Incidents
https://www.reliaquest.com/blog/the-3-malware-loaders-behind-80-of-incidents/

#CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday

ISC Diary: @malware_traffic reviews #Qakbot (#Qbot) from Thurs 2023-06-22, obama271 distribution tag https://i5c.us/d29968