In this edition
- Phishing Attacks And Tax Season Scams Exploit Fake IRS Forms
- BatLoader malware lures victims with Google websites
- Telecom Giant AT&T’s Customers Notified Of Breach, Data Advertised On Underground
- Researchers Discover Sensitive US Military-Related Email Server Exposed Online
- Powerful new ‘stealc’ malware builds buzz on the underground
According to Cybersixgill’s data, there were 348 ransomware results in April 2023, compared to 473 results in March. The ransomware gang Lockbit were responsible for 47% of ransomware attacks this month.
Manufacturing recorded the highest percentage of ransomware attacks for April. Among the reasons cybercriminals consistently target the manufacturing sector is the perception that entities in this industry are well-capitalized and can pay large ransoms.
The most mentioned malware for April 2023
In April, Redline stealer malware had the highest number of mentions on the underground (over 2,240) according to the Cybersixgill Investigative Portal.
This malware harvests information from browsers such as saved credentials and credit card information.
RedLine Stealer is a Malware-as-a-Service (MaaS), so threat actors can purchase it then sell the stolen data on dark web forums.