Mastodawn

Aug 23, 2024

PEAKLIGHT, a new memory-only dropper, is deploying #malware on Windows systems via pirated movie files. It uses #PowerShell scripts to install information stealers like Lumma Stealer and #CryptBot.

https://thehackernews.com/2024/08/new-peaklight-dropper-deployed-in.html

#cybersecurity #infosec

PEAKLIGHT Downloader Deployed in Attacks Targeting Windows with Malicious Movie Downloads

New PEAKLIGHT PowerShell dropper, uncovered by Mandiant, deploys malware via fake movie downloads on Windows.

The Hacker News

The Threat Codex Apr 24, 2024

Suspected CoralRaider continues to expand victimology using three information stealers
#CoralRaider #CryptBot #LummaC2Stealer #RhadamanthysStealer
https://blog.talosintelligence.com/suspected-coralraider-continues-to-expand-victimology-using-three-information-stealers/

Suspected CoralRaider continues to expand victimology using three information stealers

By Joey Chen, Chetan Raghuprasad and Alex Karkins. * Cisco Talos discovered a new ongoing campaign since at least February 2024, operated by a threat actor distributing three famous infostealer malware, including Cryptbot, LummaC2 and Rhadamanthys. * Talos also discovered a new PowerShell command-line argument embedded in the LNK file to bypass

Cisco Talos Blog

gtbarry May 24, 2023

Google gets legal approval to utterly wreck CryptBot malware

The company sought civil action against distributors in front of a US federal judge, alleging computer fraud, abuse, and trademark infringement. The court granted a temporary restraining order to help Google disrupt CryptBot’s distribution. Specifically, Google was looking to upset CryptBot’s infrastructure by seizing the domain names

#Google #CryptBot #malware #TAG #security #cybersecurity #hacking #hackers

https://www.androidpolice.com/google-cryptbot-malware/

Google gets legal approval to utterly wreck CryptBot malware

Court grants Google permission to dismember a malware distribution network

Android Police

ITSEC News Apr 28, 2023

Google wins court order to force ISPs to filter botnet traffic - CryptBot criminals are alleged to have plundered browser passwords, illicitly-snapped scr... https://nakedsecurity.sophos.com/2023/04/28/google-wins-court-order-to-force-isps-to-filter-botnet-traffic/ #racketeering #lawℴ #cryptbot #google #bust #scam

Google wins court order to force ISPs to filter botnet traffic

CryptBot criminals are alleged to have plundered browser passwords, illicitly-snapped screenshots, cryptocurrency account data, and more.

Naked Security

securityaffairs Apr 28, 2023

#Google obtained a temporary court order against #CryptBot distributors
https://securityaffairs.com/145396/cyber-crime/google-court-order-cryptbot-distributors.html
#securityaffairs #hacking #malware

Google obtained a temporary court order against CryptBot distributors

Google obtained a temporary court order in the U.S. to disrupt the operations of the CryptBot information stealer. Google announced that a federal judge in the Southern District of New York unsealed its civil action against the operators of the information stealer Cryptbot. The IT giant obtained a temporary court order in the U.S. to disrupt […]

Security Affairs

ottoto Apr 28, 2023

「Google、670,000 台以上のコンピュータに感染した CryptBot を削除するよう裁判所命令を取得」： The Hackernews

「Google は、ニューヨーク州南部地区の連邦判事が下した裁判所命令を利用して、「CryptBot の配布に関連する現在および将来のドメインを削除する」ことで、新たな感染の拡大を食い止めるつもりであると述べました。」

Google も大変です。Googleのサービスの偽物を排除する必要があります。

https://thehackernews.com/2023/04/google-gets-court-order-to-take-down.html

#prattohome #TheHackernews #Google #CryptBot

Google Gets Court Order to Take Down CryptBot That Infected Over 670,000 Computers

Google has obtained a court order in the US to disrupt the distribution of the information-stealing malware CryptBot that has infected over 670,000 PC

The Hacker News