AppRiver Blog

Harvey Scam email appears, more on the way

Harvey Scam Example

After every large news event or natural disaster we see the associated scam emails.  The first Harvey scam email we've seen showed up the afternoon of Aug. 30.  It is a bit surprising it took that long for it to appear, we've been watching closely.  Unfortunately many more scam emails and registered...

Read More

Social Engineering Attack Escalation

Attack Overview and Statistics

SANS Institute conducted a survey on how attackers were able to compromise user devices.  They found 74 percent entered via an email attachment or email links, 48 percent from web based drive-by or download, and 30 percent through application vulnerabilities.  Phishing (72 percent), spyware...

Read More

OSX & Windows Trojans Targeting Switzerland

This morning a unique campaign targeting Macs has caught our attention. This attempt contained a .zip file carrying a Mac (OSX) trojan known as Aptordoc (OSX.Dok).

Read More

Hancitor Picking Up Steam

The Hancitor (aka Chanitor & TorDal) malicious downloader has been picking up steam.

Read More

Phishing attempts riding WanaCry coattails

After every large news-making event, we see malicious campaigns pop up quickly to ride the coattails.  It is very easy for the scammers to modify their malevolent templates to match the latest headlines. They do this to prey on users emotions.  The scams range from simple social engineering to malicious programs that...

Read More

Spam and Virus Filtering For My Business? Why?

Complex Spamming Operation

Spam and virus filtering is a complicated operation. The other week, a friend of mine contacted me about an article he was writing that would be exposing the complexity of an international spamming operation he and another researcher uncovered. As I read through the layers of data and reviewed...

Read More

Locky Bringing the Malware Volume Back Up

Earlier this year, we had a lull in malware traffic for about three weeks after the Necurs botnet quite suddenly stopped sending out junk. History repeated itself on October 6th when we experienced another drop in malware traffic. Today, that dive in traffic might be over, ending this streak. The Locky malware has kicked...

Read More

TurboTax Users Targeted on Android Devices

Whilst pursuing our filters this morning I noticed a handful of emails purporting to be from TurboTax promoting their easy to use tax filing mobile apps. These emails also included two attachments labeled Turbo_Tax_apps.apk and Turbo_Tax_Manual_Do_IT_YOUR_SELF.apk, the latter pretending to be a tutorial on how to file your...

Read More

TeslaCrypt Continues Its Tirade

This morning we are continuing to see attacks from one of the major contenders in the Ransomware game, TeslaCrypt. TeslaCrypt began its career back in February of 2015, fresh on the heels of another popular piece of Ransonmware known as CryptoLocker. Most often delivered via the Angler Exploit Toolkit, we most often see...

Read More

Alerts Bring More Than Bad News

Read More