Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Rietspoof malware spreads via Facebook Messenger and Skype spam

Istock-cybercrime

Avast security researchers have discovered a new malware strain named Rietspoof that's currently being spread to victims via instant messaging clients such as Facebook Messenger and Skype.

In a report published over the weekend, researchers described this new threat as a "multi-stage malware," that was first spotted in August 2018, but which was largely ignored until a noticeable uptick in distribution efforts last month.

Rietspoof's main role is to infect victims, gain persistence on infected hosts, and then download other malware strains --depending on the orders it receives from a central command & control (C&C) server.

Persistence is gained by the malware by placing an LNK (shortcut) file in the Windows /Startup folder. This is a noisy operation because most antivirus products know to keep an eye on this folder, but Avast says Rietspoof is also signed with legitimate certificates, allowing the malware to bypass security checks.

The infection routine is made up of...(continued)

View All Trending Stories