Top Exploit Kit Activity Roundup – Spring 2018

/ / Exploit Kit
Overview This is the eighth in a series of blogs by the Zscaler ThreatLabZ research team collecting and analyzing the recent activity of the top exploit kits. Exploit kits (EKs) are rapidly deployable software packages designed to leverage vulnerabilities in web browsers and deliver a malicious payload to a victim’s ... Read More

2018 Tax Season Phishing Scams

Cybercriminals have long used social engineering and phishing techniques to lure unsuspecting users into giving away private information. They track current trends and events to make their attacks more effective, and tax season offers a rich opportunity for attackers to disguise themselves as well-known brands and even government agencies in ... Read More

Terror Exploit Kit via Malvertising campaign

/ / Exploit Kit
Terror Exploit Kit (EK) is one of the newer EKs that came to the scene in early 2017 and was mentioned in our Winter 2017 quarterly EK roundup where it was mainly installing ccminer Bitcoin mining applications. Terror EK activity has been low throughout the year but we are starting ... Read More

BESCOM users being redirected to RIG EK

/ / Compromise
BESCOM (Bangalore Electricity Supply Company Limited) is responsible for power distribution in eight districts of the Indian state Karnataka. The total area is roughly 15,900 square miles and serves a population of roughly 20 million people. Zscaler ThreatLabZ researchers recently discovered that malicious actors strategically placed malicious redirects on the ... Read More