The Qbot malware operation – which started more than a decade ago as banking trojan only to evolve into a backdoor and a delivery system for ransomware and other threats – continues to deftly adapt its techniques to stay ahead of security pros, according to a new report. Most recently, the operators behind Qbot – also known as Qakbot and Pinkslipbot – this year have shown new methods for delivering malware and a highly adaptable command-and-control (C2) infrastructure, with a quarter of those used being active for only a day, researchers with Lumen’s Black Lotus Labs threat intelligence group write.

Source: The Register