New Bumblebee malware campaign exploits 4shared WebDAV services

19 September 2023

Operators of the Bumblebee malware loader have launched a new campaign involving the exploitation of 4shared Web Distributed Authoring and Versioning services following a two-month hiatus, according to BleepingComputer. Malspam emails purporting to be invoices, scans, and notifications that mostly include Windows LNK files have been leveraged by attackers to facilitate the campaign, with the LNK file triggering a series of commands beginning with the mounting of a WebDAV folder on a network drive of the targeted machine, a report from Intel471 revealed.

Source: SC Magazine

Date:

19 September 2023

Categorie(s):

NEWS

Tag(s):

Bumblebee, IT, New, News, WebDAV

Accelerated patching found with CISA KEV catalog-listed flaws3 May 2024
New AI security bill unveiled in Senate3 May 2024
US arrests ex-cyber consultant accused of IT firm extortion3 May 2024
Bug hunters can get up to $450,000 for an RCE in Google’s Android apps3 May 2024
Mounting global ransomware attacks significantly impact US3 May 2024