Incidents

More Bagle trouble

During the past hours, we’ve intercepted a flurry of new Bagle variants; apparently, it’s been a busy day for the author, who keeps sending them out.

Additionally, one of the URLs which all these variants monitor for updates has come online, with yet another (yes, you’ve guessed) Bagle variant – Bagle.bp.

So far the situation appears under control – the speed of reaction from antivirus companies in this case was outstanding. Except for the initial seeding waves, there is no sign of an outbreak. Stay tuned for more details.

More Bagle trouble

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Reports

ToddyCat: your hidden email assistant. Part 2

An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.