Updated Carbanak malware leveraged in ransomware attacks

Ransomware attacks last month saw the reemergence of the Carbanak banking malware, which has been strengthened with attack techniques and vendors, according to The Hacker News. Hacked websites spoofing HubSpot, Xero, Veeam, and other business-related software have been leveraged by threat actors to facilitate the distribution of the updated Carbanak malware, an NCC Group report showed. The return of Carbanak, which has been used by the FIN7 hacking group, comes amid an increase in ransomware attacks between October and November. More than 4,000 ransomware attacks have been recorded until November, which is less than 1,000 fewer than the combined ransomware incident count for 2021 and 2022. "With one month of the year still to go, the total number of attacks has surpassed 4,000 which marks a huge increase from 2021 and 2022, so it will be interesting to see if ransomware levels continue to climb next year," said NCC Group Global Head of Threat Intelligence Matt Hull.