Hackers use Qbot malware for its advanced capabilities, including keylogging, credential theft, and backdoor functionality.
Previously distributed Qakbot malware campaign was capable of monitoring the browsing activities of the infected computer and logs all information related to finance-related websites.
Qbot also enables the threat actors to create a persistent presence on infected systems, along with facilitating:
Cybersecurity researchers at Checkpoint recently discovered that threat actors actively use Qbot malware via FakeUpdates, leading to the race for malware attacks.
Compounding the problem are zero-day vulnerabilities like the MOVEit SQLi, Zimbra XSS, and 300+ such vulnerabilities that get discovered each month. Delays in fixing these vulnerabilities lead to compliance issues, these delay can be minimized with a unique feature on AppTrana that helps you to get “Zero vulnerability report” within 72 hours.
Four months after Operation Duck Hunt’s takedown, the Qbot malware was revived in December 2023. FakeUpdates topped the Threat Index and was found to be hitting the education sector hard.
Qbot resurfaces in a phishing attack on the hospitality sector, posing as IRS. Meanwhile, the DLL-triggered Qbot dominated for 10 months before its takedown.
FakeUpdates claims the top spot with a 2% global impact, while Nanocore holds third for six months. However, there are new entries that are from:
Qbot was spotted in the wild in less than 4 months post-infrastructure takedown. This shows that disrupting malware isn’t enough, as threat actors always adapt.
These are the reasons why researchers in the field of cybersecurity highly encourage firms to perform the following:
Besides this, the following vulnerabilities are the most exploited, as they affect organizations globally:
Here below, we have mentioned all the top malware families:
Here below, we have mentioned all the top exploited vulnerabilities:-
Here below we have mentioned all the top mobile malware:-
Here below, we have mentioned all the top-attacked industries globally:-
Looking for cost-effective penetration testing services? Try Kelltron’s to assess and evaluate the security posture of digital systems.
The New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) has detected a formidable new cyber threat. Dubbed LockBit Black, this…
In a recent development, Zscaler Inc., a prominent cybersecurity firm, has concluded its investigation into a potential data breach initially…
A notorious threat actor has decided to sell the INC Ransomware code for an unbelievable $300,000. As a result of…
As a sneaky scheme, hackers use DNS tunneling to bypass traditional security measures. By wrapping malicious data inside DNS queries…
iTunes has been found to have an arbitrary code execution vulnerability that might allow attackers to execute malicious code. To…
In a sophisticated cyberattack campaign, hackers are using the online meeting platform GoToMeeting to distribute a Remote Access Trojan known…