Fake DMCA and DDoS complaints lead to BazaLoader malware
The DDoS theme is a variation of another lure, a Digital Millennium Copyright Act (DMCA) infringement complaint linking to a file that supposedly contains evidence about stealing images. In submissions seen by BleepingComputer, the threat actor used Firebase URLs to push BazaLoader.
The goal is the same though: use contact forms to deliver BazaLoader malware that often drops Cobalt Strike, which can lead to data theft or a ransomware attack.https://www.bleepingcomputer.com/news/security/fake-dmca-and-ddos-complaints-lead-to-bazaloader-malware/
Featured Resources
blog
10 Types of Network Attacks: Common Threats and How to Prevent Them
Network attacks have evolved far beyond simple brute-force intrusions or spam. Threat actors now employ complex, multi-vector tactics that can
Two Pager
Proactive, AI-Powered SIEM Rule Validation and Detection Engineering
Save time and resources by automating the most critical tasks in modern SecOps
blog
Top 10 Vulnerability Management Metrics for Effective Reporting
To stay ahead of attackers and demonstrate progress to stakeholders, organizations must measure how effectively they manage and reduce cyber