Collaborate Disseminate
The current upsurge in hackers looking to take advantage of the COVID-19 pandemic has been well-documented, be they scammers and financially motivated hackers or well-funded and skilled state-sponsored groups. This in itself does not say much about th… Continue reading Hospitals Forced to Fight Another Pandemic
As it stands, ransomware is the cybersecurity problem that refuses to disappear. What started as malware specifically targeting home users is now targeting government departments and enterprise organizations. Not even Fortune 500 companies are safe fr… Continue reading MedusaLocker Leaves No Network Drive Safe
DoppelPaymer initially began to add victims to its ever-growing list in June 2019. For a relative newcomer to the ransomware scene, it has made a name for itself by targeting larger organizations as well as managed service providers (MSPs) to gain acc… Continue reading DoppelPaymer: New, Trendy and Dangerous
If it is not yet apparent how pervasive and problematic ransomware is, just look at the news. Weekly, and sometimes near-daily, a new variant is discovered or another massive corporation has fallen victim to an attack. Whether a Fortune 500 company or… Continue reading FTCode: PowerShell’s Own Ransomware
When Clop was discovered by Jakub Kroustek in February 2019, all indicators showed that it was a new CryptoMix with the .CLOP, or in some circumstances .CIOP, extension tagged onto encrypted files. Since this discovery, the ransomware operators behind… Continue reading Clop Ransomware Not Just a CryptoMix Variant
If a fan of anime or manga is asked their thoughts on Ryuk, a long discussion about the character popularized in Death Note will undoubtedly follow. Ask someone in the InfoSec community about Ryuk and equally long discussion will ensue—this time an eq… Continue reading Ryuk: Cult Character to Ransomware Villain
Recent research estimates that ransomware attacks against enterprises have increased year on year by approximately 500%. Given that Cyber Monday and Black Friday are within striking distance, a surge in ransomware infections should be not only expecte… Continue reading Buran Ransomware Looks To Undercut the Competition
Research by security firms places Ryuk and Sodinokibi as two of the prime ransomware threats facing enterprises today. While some reports illustrate ransomware infections across the board, ransom amounts have almost tripled from quarter to quarter for… Continue reading Sodinokibi and the Successful Tactics it Uses
Cybercrime has never been one to hem in tactics with ideology or rules. Rather, malware operators are known to use what works and then modify code to continue to work. By “work,” we mean that the code does what it is supposed to; for information steal… Continue reading Maze Ransomware Exploiting Exploit Kits
Since 2010 users have been plagued by nearly uncountable versions of a seemingly uncountable variety of ransomware variants. While tactics have changed, including infection vectors, the goal of ransomware has remained the same: Namely, to render a mac… Continue reading Muhstik Ransomware: A Hack-Back Story