Black Basta Develops Custom Malware in Wake of Qakbot Takedown

Dark Reading Daily [TechWeb]( Follow Dark Reading: [RSS]( August 02, 2024 LATEST SECURITY NEWS & COMMENTARY [Black Basta Develops Custom Malware in Wake of Qakbot Takedown]( The prolific ransomware group has shifted away from phishing as the method of entry into corporate networks, and is now using initial access brokers as well as its own tools to optimize its most recent attacks. [Attacks on Bytecode Interpreters Conceal Malicious Injection Activity]( By injecting malicious bytecode into interpreters for VBScript, Python, and Lua, researchers found they can circumvent malicious code detection. [Attackers Hijack Facebook Pages, Promote Malicious AI Photo Editor]( A malvertising campaign uses phishing to steal legitimate account pages, with the endgame of delivering the Lumma stealer. [More Legal Records Stolen in 2023 Than Previous 5 Years Combined]( Law firms make the perfect target for extortion, so it's no wonder that ransomware attackers target them and demand multimillion dollar ransoms. ['Sitting Ducks' Attacks Create Hijacking Threat for Domain Name Owners]( Researchers say the attacks are easy to perform, difficult to contact, nearly unrecognizable, and "entirely preventable." [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Smart Cars Share Driver Data, Prompting Calls for Federal Scrutiny]( Two US senators accuse carmakers of deceptive language and shifty practices in sharing and resale of driver data. [Would Making Ransom Payments Illegal Result in Fewer Attacks?]( If paying a ransom is prohibited, organizations won't do it — eliminating the incentive for cybercriminals. Problem solved, it seems. Or is it? Your Voice Heard!]( Tell Dark Reading about your cybersecurity budget challenges and concerns, such as a rise in cyberattacks, ransomware, or attacks on software supply chains and partners. Take our survey, and you could could win one of 10 $50 Amazon gift cards to be given away through a random drawing. [7 Sessions Not to Miss at Black Hat USA 2024]( This year's conference will be a treasure trove of insights for cybersecurity professionals. [MORE]( PRODUCTS & RELEASES [Protect AI Acquires SydeLabs to Red Team Large Language Models]( [ESET Reveals Latest Cloud-Native Authentication Solution]( [AI-Driven Executive Impersonations Emerge As Significant Threat to Business Payment Processes]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Microsoft: Azure DDoS Attack Amplified by Cyber-Defense Error]( The sustained cyberattack, likely made worse by a mitigation snafu, disrupted several Azure cloud services for nearly eight hours on July 30. LATEST FROM THE EDGE [NVD Backlog Continues to Grow]( Despite getting help, NIST is not keeping up with new vulnerability reports for the National Vulnerabilities Database, according to an analysis from Fortress Information Security. LATEST FROM DR TECHNOLOGY [Companies Struggle to Recover From CrowdStrike's Crippling Falcon Update]( The cybersecurity firm says that 97% of sensors are back online, but some organizations continue to recover, with costs tallied at $5.4 billion for the Fortune 500 alone. LATEST FROM DR GLOBAL [North Koreans Target Devs Worldwide With Spyware, Job Offers]( DEV#POPPER is back, looking to deliver a comprehensive, updated infostealer to coding job seekers by way of a savvy social engineering gambit. WEBINARS - [Securing Your Cloud Assets]( - [CISO Perspectives: How to make AI an Accelerator, Not a Blocker]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [How to Use Threat Intelligence to Mitigate Third-Party Risk]( - [OT Cybersecurity Glossary & Quick Start Guide]( - [OT Threat Intelligence Report: Fuxnet ICS Malware]( - [5 Critical Controls for World-Class OT Cybersecurity]( - [Google Cloud Threat Horizons Report, H1 2024]( - [A Year in Review of Zero-Days Exploited In-the-Wild in 2023]( - [2024 InformationWeek US IT Salary Report]( [View More White Papers >>]( FEATURED REPORTS - [Managing Third-Party Risk Through Situational Awareness]( - [2024 InformationWeek US IT Salary Report]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=124943&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_08.02.24&sp_cid=54558&utm_content=DR_NL_Dark%20Reading%20Daily_08.02.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#02 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)