B2B cyber security

Dark Web: Quantum Builder produces RAT malware

4 October 2022

The Quantum Builder is offered on the Dark Web and various variants of the Remote Access Trojan (RAT) Agent Tesla are distributed. Overall, the malware relies on LNK files (Windows shortcuts) to spread the Trojan. There is even a service package for cyber criminal partners. Agent Tesla, a .NET-based keylogger and remote access trojan (RAT) since 2014, is currently being distributed via a builder sold on the dark web called "Quantum Builder". Security researchers from the Zscaler ThreatlabZ team examined the current campaign and identified an evolution. Malware authors now rely on LNK files (Windows shortcuts) to propagate the payload, creating…

Germany affected: espionage with stealer agent Tesla

September 27, 2022

| No comments

| Short news

As Kaspersky has noted, there is a recent campaign by cybercriminals using malware stealer Agent Tesla for espionage. The malware is distributed via well-crafted spam emails. Almost 15.000 users in Germany are already affected. Kaspersky experts have discovered a spam email campaign targeting companies worldwide using the notorious stealer Agent Tesla. For the spam campaign, the cyber criminals imitated e-mails from providers or contractors in detail in order to obtain the login data of the organizations concerned - the cyber criminals only revealed the wrong sender address. These credentials are shared on Darkweb forums...

Agent Tesla scammers exposed

22 May 2022

| No comments

| Short news

Remote access tools, or RAT for short, continue to be a major threat. Malwarebytes has recently unmasked a Nigerian scammer group around Agent Tesla. Luckily there were no full-time professionals working with the group: they sent test emails and thus revealed their IP address. The data thief "Agent Tesla" is a remote access tool (RAT) that has been active since 2014 and is now one of the most popular malicious files that can be observed in email spam campaigns. While searching for threats targeting Ukraine, Malwarebytes has identified a new group that has been heavily involved in phishing and other…

Agent Tesla tricked IT security

22. February 2021

| No comments

| PR News

Sophos today released a new report on the malware Agent Tesla: “Agent Tesla Amps Up Information Stealing Attacks”. In it, the IT security specialists describe how attackers use new techniques to disable endpoint protection before injecting the malware into the system. Agent Tesla is a widely used Remote Access Tool (RAT) known since 2014 and used by attackers for data theft - now new updates on details about the attacks have come to light. The creators offer it for sale on dark web forums and update it continuously. Cybercriminals…

Tag: Agent Tesla

Dark Web: Quantum Builder produces RAT malware

Germany affected: espionage with stealer agent Tesla

Agent Tesla tricked IT security

Which user group do you belong to? (No tracking!)

Important links

Latest Articles & News

It was searched for

Social Media