Collaborate Disseminate
Security researchers came across a new ransomware family called “CryCryptor” that masqueraded as a Canadian COVID-19 tracing app. CryCryptor emerged just days after the Canadian government announced it would support the development of a nat… Continue reading New CryCryptor Ransomware Masqueraded as COVID-19 Tracing App
Several attack campaigns waited two weeks after achieving a successful Trickbot infection before they deployed Ryuk ransomware as their final payload. SentinelOne came across the attacks as the result of monitoring an attack server employed by Trickbot… Continue reading Ryuk Ransomware Deployed Two Weeks After Initial Trickbot Infection
Security researchers discovered a new malware threat called “NitroHack” that modifies the Discord client for Windows into an infostealing trojan. MalwareHunterTeam observed malicious actors abusing DM’s from infected Discord users as … Continue reading NitroHack Modifies Windows Discord Client into Infostealing Trojan
Amazon Web Services (AWS) said that it mitigated a distributed denial-of-service (DDoS) attack with a volume of 2.3 Tbps. In its “Threat Landscape Report – Q1 2020,” AWS Shield revealed that its team members had spent several days res… Continue reading Amazon Web Services Mitigated a 2.3 Tbps DDoS Attack
Security researchers came across a series of odd protest-themed spam email messages that appeared to target the Atlanta Police Foundation. SANS’ Internet Storm Center observed that the spam messages first appeared to be instances of an extortion … Continue reading Odd Protest-Themed Spam Messages Targeted Atlanta Police Foundation
Security researchers observed sextortionists leveraging social engineering techniques to steal their victims’ personal information. SANS’ Internet Storm Center (ISC) discovered that sextortionists had begun creating profiles for young women… Continue reading Sextortionists Using Social Engineering Tactics to Collect Victims’ Data
Italian multinational energy company Enel Group suffered a SNAKE ransomware infection that affected its internal network. According to a statement issued by Enel Group, the ransomware attack first registered with the energy company on June 7 when its i… Continue reading SNAKE Ransomware Affected Enel Group’s Internal Network
The actors behind Ragnar Locker partnered with the Maze ransomware gang as a means of extorting victims whose unencrypted data they had stolen. On June 8, the operator of the “Ransom Leaks” Twitter account revealed that Maze ransomware had … Continue reading Ragnar Locker Partnered with Maze Ransomware Cartel
A security researcher discovered a new ransomware strain called “Zorab” masquerading as a decryptor for STOP Djvu ransomware. Michael Gillespie, creator of the Ransomware ID service, spotted Zorab being distributed as a decryptor for the ST… Continue reading Zorab Ransomware Disguised as STOP Djvu Ransomware Decryptor
Security researchers observed phishers leveraging a fake VPN configuration notification to target employees’ Office 365 credentials. Abnormal Security found that the campaign attempted to capitalize on the trend of organizations implementing VPNs… Continue reading Phishers Use Fake VPN Config Notification to Target Office 365 Details