Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the gravity-forms-pdf-extended domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/laditech/public_html/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the post-title-marquee-scroll domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/laditech/public_html/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the schema-and-structured-data-for-wp domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/laditech/public_html/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the uael domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/laditech/public_html/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the wordpress-seo domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/laditech/public_html/wp-includes/functions.php on line 6114
IcedID Malware is being used in a new hacking campaign targeting the Ukrainian government

IcedID Malware is being used in a new hacking campaign targeting the Ukrainian government

IcedID Malware

The Ukrainian Computer Emergency Response Team (CERT-UA) has issued a warning about a new wave of social engineering attacks that deploy IcedID malware and steal sensitive data using Zimbra flaws.

According to the CIA, the IcedID phishing assaults are tied to a threat cluster known as UAC-0041. The infection chain starts with an email that contains a Microsoft Excel document (олани pестp.xls or Mobilization Register.xls) that invites users to enable macros, culminating in IcedID deployment.

BokBot, also known as TrickBot, Emotet, and ZLoader, is a data-stealing malware that has developed from its beginnings as a banking trojan to a full-fledged crimeware service that aids in the recovery of next-stage infections like ransomware.

Email attachments with a Content-Location header leading to a remote server holding JavaScript code that performs an exploit for a Zimbra cross-site scripting vulnerability are part of the second wave of targeted assaults linked to the UAC-0097 threat group (CVE-2018-6882).

In the last phase of the attack chain, the injected malicious JavaScript is used to send victims’ emails to an email address controlled by the threat actor, indicating a cyber espionage effort.

The attacks are part of a pattern of hostile cyber activities directed towards Ukraine that began in January. CERT-UA recently announced that it has foiled a Russian hack aiming at undermining the operations of an undisclosed Ukrainian energy company.

LadiTech Cyber security services

We provide on-demand knowledge as well as the ongoing threat monitoring and response necessary to prevent assaults from causing damage to your business. You’ll receive the help you need when you need it most if you maximize efficiency while decreasing costs. A single unified dashboard may be used to monitor and analyze data and trends, and logs can be retrieved at any time. We help businesses respond to attacks faster and more effectively by using cutting-edge cybersecurity technologies while preserving a well-documented audit trail.

For more information contact us:

  • +16134167874
  • +90 (212) 900 9094
  • contact@laditech.com

Source

Share this on

Facebook
LinkedIn
Twitter
Pinterest
Email
WhatsApp
Telegram
Skype

About LadiTech

We are a group of passionate people working to provide the most distinctive and effective services to all of our clients throughout the world. We contribute enthusiasm and zeal to all of our initiatives and responsibilities, and we reap the rewards as a consequence.

Instagram Facebook Linkedin Twitter

Recent Posts

Get professional IT consulting services about IT management, custom software and website development to improve your business or start your own IT project. Read our pages to learn more about the IT consulting we offer to companies like yours.

Services
Useful Links