CSIRT Toscana

CSIRT Toscana

Tag: SambaSpy
Pagina 1 di 1

19 Settembre 2024

SambaSpy: campagna malspam indirizzata verso utenze italiane (BL01/240919/CSIRT-ITA)

Descrizione e potenziali impatti I ricercatori di sicurezza di Kaspersky hanno rilasciato un report relativo ad una campagna di distribuzione malware analizzata a maggio 2024, volta a distribuire il Remote Access Trojan (RAT) SambaSpy esclusivamente verso utenze localizzate sul territorio italiano.

Categorie

Bollettino

Argomenti

IoC malware RAT SambaSpy

Altri argomenti

0-day

7-Zip

AC7

Access Rights Manager

ACN

Acrobat

Acrobat Reader

Acronis

Acronis Cyber Infrastructure

Active Directory

Adaptive Security Appliance

Adaptive Security Virtual Appliance

Adattivo

ADC

AdminServer

Adobe

Adobe Photoshop

ADSelfService Plus

Advance Steel

After Effects

After Effects

Agent Tesla

Agenzia delle Entrate - Riscossione

Agile PLM Framework

AI Core

Aiohttp

Airflow

Amministrazione

Analog Telephone Adapter

Analytics

Analytics Plus

Android

Animate

Antivirus

AP

Apache

Apache Cassandra

Apex Central

Apex One

ApexOne

Apple

Aquabot

ArcaneDoor

Arcserve

Aria Automation

Aria Operations

AriaOperations

Arma dei Carabinieri

Assets Discovery

Asus

AsyncOS

Atlassian

Atlassian Confluence

Audition

Authentication Gateway

AutoCAD

Autodesk

Avalanche

Avi Load Balancer

Avro

Azure

backdoor

Backup & Replication

Backup Enterprise Manager

Bamboo

Bamboo Data Center

BeePhotos

BeeStation

BeyondTrust

BIG-IP

BIND

Bitdefender

BNL

BNPP

Botnet

Bridge

Broadcom

BusinessObjects

C2

Cacti

Caldera

Callback

Camaleon CMS

Camera

Campagna

Canon

Catalyst Center

Catalyst SD-WAN

CAX30

CentreStack

CheckPoint

Chrome

Cisco

Cisco Security Manager

Citrix

Citrix ADC

Citrix Gateway

Citrix Session Recording

Citrix uberAgent

Civil 3D

ClamAV

Cleo

Cloud Agent

Cloud Data Flow

Cloud Foundation

Cloud One Trend Micro

Cloud Platform

Cloud Service Appliance

Cloud Services Application

Cloud Skipper

Cloude Platform

CloudEdge

ColdFusion

Collaboration Daffodil

Collaboration Joule

Collaboration Kepler

Commerce

Community Editio

Community Edition

Community Edition

Compass

ConfD

Confluence

Confluence Data Center

Confluence Server

Connect

Connect Secure

ConnectWise

ConneXium Network Manager

Console On-Premise

corrispondenza

Cortex XSOAR

Critical Patch Update

Crosswork Network Services Orchestrator

CrowdStrike

CrushFTP

CSA

CSIRT

CUPS

cURL

Cyber Protect

CyberPanel

D-Link

Data Center

Deep Security Agent

Deep Security Agent

Desktop and Server Management

Desktop Central

Diagnostic Tool

Dimension

Django

Docker

Docs@Work for Android

DolphinScheduler

DrayTek

Dreamweaver

Drive Client

Drive Server

dropper

Drupal

Drupal Core

DSL CPE

DSM

DSMUC

DWG TrueView

ECE

EcoStruxure

Elastic Cloud Enterprise

Elastic NV

ElasticNV

EMM

Endpoint Manager

Endpoint Manager for Mobile

Endpoint Security

EndpointManager

Enterprise

Enterprise Edition

Enterprise Edition

Enterprise Protection

EPM

EPMM

EPSS

Erlang Solutions

Erlang/OTP

Eset

ESXi

Exim

Expedition

Exploitation

Exploited

Expressway

Exynos

F5 Networks

FalconSensor

Fattura

FileCatalyst

FileCatalyst Workflow

FileSender

Finesse

Firefox

Firefox ESR

Firefox for iOS

Firepower Management

Firepower Threat Defense

Fleet Server

Flowmon

Fluent Bit

FortiADC

FortiAIOps

FortiAnalyzer

FortiClientEMS

FortiClientLinux

FortiClientMac

FortiClientWindows

FortiEDR

FortiExtender

Fortigate

Fortimail

FortiManager

Fortinet

FortiOS

FortiPAM

FortiPortal

FortiProxy

FortiRecorder

FortiSandbox

FortiSIEM

FortiSOAR

FortiSRA

FortiSwitch

FortiVoice

FortiWeb

FortiWebManager

FortiWLM

Fortra

Foundation

Framemaker

Framework

Freedom

FreeType

FTP

Fusion

Gateway

Generali

GeoServer

Ghostscript

Git

GitHub

GitHub Enterprise Server

GitLab

GitlLab

Gladinet

glibc

GMS

GNU

GoAnywhere MFT

Google

Google Chrome

Grafana

GravityZone

GravityZone Control Center

GuLoader

Harmony

HBS 3 Hybrid Backup Sync

HCX

Hikvision

HTTP Server

HTTP/2

HugeGraph

Hype

Hypervisor

IBM

iCloud

ICS

IdendityIQ

Illustrator

Image-Builder

IMC

Imperva

InCopy

InDesign

info-stealer

Infostealer

InfraWorks

Ingress

Ingress Controller

IngressNightmare

INPS

Integrated Management Controller

Intelligent Node

Intercept X

Intercom Broadcasting System

InterMesh Subscriber

Internet Security

Intesa Sanpaolo

IoC

iOS

IOS XE

IOS XR

iPadOS

IPS

ISAC

ISC

Ivanti

Ivanti Application Control

Ivanti Connect Secure

Ivanti Connect Secure

Ivanti EPM

Ivanti Neurons

Ivanti Policy Secure

Ivanti Policy Secure

Ivanti Security Controls

Ivanti Sentry

Java

Jenkins

Jenkins Core

Jenkins LTS

Jenkins Security Advisory

Jenkins weekly

JetBrains

Jira

Jira Core Data Center

Joomla!

Juniper Networks

Juniper Networks

Junos OS

Junos OS Evolved

Junos Space

JunosOS

JunosOS Evolved

kernel

Kibana

Kubernetes

La settimana cibernetica

Laravel

LDAP

LegionLoader

Lens

LexiCom

libexpat

liblzma

LibreOffice

License Central

Liferay

Lightroom

Linux

LummaC2

Lynx

macOS

Magento

malspam

malware

Manage

ManageEngine

Mastodon

Mattermost

Mautic

MDM

Media Encoder

Media Encoder

Media Server for DSM

Media Streaming

Meeting

Meeting SDK

Meraki

MiCollab

Microsoft

Microsoft Edge

Microsoft Outlook

MikroTik

Ministero della Difesa

Mirth Connect

MISP

Mitel

MITRE

MobileIron Core

Moby

Modicon

MondoDB

MongoDB

MongoDB C Driver

MongoDB libbson

MongoDB PHP Driver

MongoDB Server

MongoDBServer

mongosh

Moodle

MOVEit

MOVEit Transfer

Mozilla

MTA

myQNAPcloud

NAKIVO

NAS

Navisworks

Needrestart

Nessus

NetExtender

Netgear

NetScaler

NetWeaver

Networks Expedition

Neurons

Neurons Agent Platform

Neurons for Patch Management

Next.js

Nextcloud Server

NextGen HealthCare

Nexus

Nexus Dashboard

Nexus switch

nf_tables

NGINX

NMS300

Node.js

Notes Station

Now Platform

NPM

NVR

NX-OS

OFBiz

One

open source

OpenEdge

OpenMetadata

OpenPrinting

OpenShift

OpenSSH

OpenSSL

OpenVPN

Operation 99

Operation ForumTroll

Oracle

Outlook

OwnCloud

Palo Alto Networks

Pan-OS

PaperCut

Paragon

Paragon Active Assurance

Parallels Desktop

Parquet

Partner Center

Patch for Configuration Manager

Patch-Tuesday

Patch-Tuesday

Path-Tuesday

pgAdmin

PgBouncer

phishing

Phishing Microsoft

Photos

Photoshop

PHP

PikaBot

Pixel

Pixels

Platform

plugin

PoC

Policy Secure

Policy Secure Gateways

Poste Italiane

PostgreSQL

Power Pages

PowerLogic

Premier Pro

Premiere Pro

Premiere Pro

Privileged Remote Access

Progress

Progress Software

Progress Software

Project RedPenguin

Proofpoint

Pulse Connect Secure

Pulse Connect Secure

PuTTy

Python

Qlik

Qlik Sense Enterprise

QNAP

Qsync Central

QTS

QTS QuTS hero

QuLog Center

QuMagie

QuRouter

QuTS hero

QuTScloud

R

R7000

Ransomware

RAT

RAX30

RCE

Reader

Recovery Orchestrator

RedHat

Redis

Regione Toscana

regreSSHion

Remote Support

Replication Service

Rexml

RISK:STATION

Rooms

Rooms Client

RoundCube

Router

Rsync

Ruby

RubyGems

Rust

Safari

SailPoint

SambaSpy

saml

Samsung

SAP

SAPSetup

Scam

Schneider Electric

ScreenConnect

SD-WAN

Secure Access

Secure Access Client

Secure client

Secure Email Gateway

Secure Endpoint

Secure Firewall Management Center

Secure Firewall Threat Defense Virtual

Secure Gateway

SecureSphere

Security Gateways

Security Patch Day

Security router

SEM

Sentry

Serv-U

Server

Service Provider Console

Service Tags

ServiceNow

Siemens

SimpleHelp

Simulate

SINEC INS

Sitefinity

Siveillance Video

SMA 100

SMA100

SMA1000

Smart Software Manager On-Prem

SMB

Smishing

SolarWinds

Sondaggio

SonicOS

SonicWall

Sophos

Sourcetree

Splunk

Spoofing

Spring

Squid

SSL-VPN

Stampanti multifunzione

Struts

Substance 3D Designer

Substance 3D Painter

Substance 3D Sampler

Substance 3D Stager

Superset

Surveillance Station

Symantec

SymDiag

Synology

Teamcity

Tecnomatix Plant Simulation

Telerik Report Server

Telerik Reporting

Tenable

Tenda

Thales

Thuderbird ESR

Thunderbird

Thunderbird ESR

ThunderKitty

TIM

Tinyproxy

Tomcat

Tools

Total Security

ToxicPanda

Transfer

Trellix

Trend Micro

Trend Micro

Trenitalia

trojan

tvOS

Typo3

UDP

UEFI

UI Macros

UIWS

Unity Connection

Unix

Update Server

uri gem

vCenter Server

Veeam

Velocity License Server

Vercel

Versalink

Video SDK

Video Station

Vigor

Vijeo Designer

Virtual Apps and Desktops

Virtual Traffic Manager

Vishing

visionOS

VLTrader

VMWare

VMware Aria Automation

VMware Cloud Foundation

VMware SD-WAN Orchestrator

VPN

VSPC

Vulnerabilità

WAF

watchOS

Wazuh

Web Dispatcher

Web Help Desk

Webex

WebHelpDesk

WebKit

Whatsapp

WhatsUp Gold

WhatsUp Gold

WiFi

Windows

WithSecure

WordPress

Workplace

Workspace

Workstation

Workstation Cloud

Xcode

XenServer

Xerox

XR1000

XR1000v2

XWiki

XZ Utils

Zabbix

zero-day

Zimbra

Zoho

Zoom

ZTA Gateway

ZTA Gateways

ZTA Gateways

Zyxel