Valak is Spreading and Topping Charts with New Variants | Cyware Alerts

Valak is an info-stealer malware that has been active since late-2019; however, its activities have amplified recently.

What researchers found?

Being ranked as the 9th most prevalent malware in September 2020, Check Point researchers have reported a sharp rise in the Valak laden cyber attack.
  • The latest versions of this malware targets Microsoft Exchange servers.
  • The cybercriminals specifically hunt down enterprise mailing information, passwords, and enterprise certificates during the attack.
  • Valak becomes a first-time new entrant in the list of the top ten malware that includes the likes of Emotet, Trickbot, Dridex, Agent Tesla, and XMRig.

Additional insight

The top vulnerabilities exploited by the malware include:

  • MVPower DVR Remote Code Execution vulnerability
  • Dasan GPON Router Authentication Bypass (CVE-2018-10561)
  • OpenSSL TLS DTLS Heartbeat Information Disclosure (CVE-2014-0160, CVE-2014-0346).

Previously in action

Last month, the malware operators were found spreading the infection via malspam campaigns, including malicious .doc files.

  • In June 2020, authors of Valak added a new clientgrabber plugin, which could perform the task of stealing email credentials from the registry of the compromised system.
  • In the same month, a Valak campaign was found using document files that contacted PHP delivery proxies to pull down and execute the initial DLL payload.


Cybercriminals are regularly updating their malware with new abilities and features to stay ahead in their game. Therefore, experts recommend deploying anti-malware solutions to prevent and stop such malware. In addition to this, users should stay alert while opening emails or clicking on links.

Source link

Recent articles

Jack Ma is making history again with the Ant IPO, and getting even more wealthy while doing it

Financial tech company Ant Group's share sale in Hong Kong and Shanghai — the biggest in history — will catapult Ma to within...

The Best Wi-Fi Routers in 2020

Image: NetgearTop Product: Google Nest Wi-FiImage: GoogleI use Google’s Nest Wi-Fi in my own two-story house, and it’s such an...

Malaysia PM Muhyiddin gets reprieve from key political ally | Malaysia

Political bloc that led the country for 60 years until 2018 also said that it will not back opposition leader Anwar Ibrahim.The largest...

Hospitals brace for more cyberattacks as coronavirus cases rise

Hospitals and health care institutions preparing for a fall wave of coronavirus cases are bracing for more cyberattacks after hackers seeking to take...

Coming Soon to Xbox Game Pass for Android, Console, and PC: Celeste, Grim Fandango, PUBG and More

We’ve got more games coming to Xbox Game Pass on Console, PC, and Android devices – but heads up some are a little...

Leave a reply

Please enter your comment!
Please enter your name here