Group leveraging Cutwail spam botnet opts for "Magnitude" over BlackHole exploit kit

Share this article:

A group of saboteurs using the world's largest spam botnet, Cutwail, have opted to distribute their malware via the Magnitude exploit kit instead of through BlackHole.

Researchers on the Dell SecureWorks Counter Threat Unit (CTU) blogged on Friday about the move, which came soon after the arrest of Paunch, the author of the infamous BlackHole exploit kit.

The Cutwail botnet has often been used to deliver financial malware, such as the Zeus variant dubbed Gameover, researchers warned.

In one spam campaign, fraudsters tricked users into installing Gameover by sending spurious emails designed to look like browser updates from Microsoft. Instead, the Cutwail spam contained malicious links.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

VBA malware on rise, templates make it easier to write code

VBA malware on rise, templates make it easier ...

Researchers at SophosLabs found an uptick in VBA samples in July.

Analysts spot 'Critolock,' ransomware claims to be CryptoLocker

Trend Micro noted several differences between Critolock and CryptoLocker, however.

Citadel used in APT attacks against petrochemical firms

Citadel used in APT attacks against petrochemical firms

In an interesting twist, financial malware Citadel was used to infect firms outside of the finance sector via APT attacks, Trusteer found.