Cerber – Page 2 – WindowsTechs.com

European police take down criminals behind two big ransomware strains

Posted on December 20, 2017 by Shaun Waterman

Romanian police announced Wednesday the arrest of three suspects and questioning of six more in an operation against a cybercrime gang that spread two of the most popular ransomware variants in the world. The arrests, which were carried out last week, were the culmination of a multi-national investigation that began in 2015, according to a statement from the Dutch National High Tech Crime Unit. Other agencies involved included Britain’s National Crime Agency, the FBI, and both Europol’s European CyberCrime Center (EC3) and its Joint Cybercrime Action Taskforce (J-CAT). Those arrested were linked to two forms of ransomware: CTB-locker and Cerber. According to Europol, investigators from the Romanian Police Service for Combating Cybercrime seized “a significant amount” of material at the six homes, including “hard drives, laptops, external storage devices, cryptocurrency mining devices and numerous documents.” The agency said it supported the investigation, known as Operation Bakovia, by “hosting operational meetings, […]

The post European police take down criminals behind two big ransomware strains appeared first on Cyberscoop.

Continue reading European police take down criminals behind two big ransomware strains→

2018 Malware Forecast: learning from the long summer of ransomware

Posted on November 3, 2017 by Bill Brenner

SophosLabs looks at the summer of 2017’s most prolific ransomware families Continue reading 2018 Malware Forecast: learning from the long summer of ransomware→

New Magniber Ransomware Targets South Korea, Asia Pacific

Posted on October 21, 2017 by Tom Spring

Researchers identified a new ransomware family called Magniber that uniquely only targets users in South Korea and the Asia Pacific regions. Continue reading New Magniber Ransomware Targets South Korea, Asia Pacific→

Another change with Locky delivery methods today. Payload embedded in a large .js file

Posted on September 29, 2017 by Myonlinesecurity

The next in the never ending series of Locky downloaders is an email with a blank / empty subject pretending to come from random names and email addresses. The body content pretends to be an invoice notification. There are no attachments with these emails but a link in the email body … Continue reading → Continue reading Another change with Locky delivery methods today. Payload embedded in a large .js file→

US Government Site Was Hosting Ransomware

Posted on September 1, 2017 by Michael Mimoso

As recently as Wednesday afternoon, a U.S. government website was hosting a malicious JavaScript downloader that led victims to installations of Cerber ransomware. The malware link has since been taken down. Continue reading US Government Site Was Hosting Ransomware→

Week in Security (August 7 – August 13)

Posted on August 14, 2017 by Malwarebytes Labs

A compilation of security news and blog posts from Monday the 7th of August to August 14th. We looked at security certificates and the new bloated Cerber ransomware.

Categories:

Tags: cerber certificates dna Locky Magnitude mamba ransomware security weekly blog roundup

(Read more…)

The post Week in Security (August 7 – August 13) appeared first on Malwarebytes Labs.

Continue reading Week in Security (August 7 – August 13)→

Cerber ransomware delivered in format of a different order of Magnitude

Posted on August 9, 2017 by Jérôme Segura

We review a trick that the Magnitude exploit kit uses to bypass security scanners.
Categories:
Exploits
Threat analysis
Tags: binary paddingcerberexploit kitgateMagnigatemagnitude EKransomwareXML

(Read more…)

The post Cerber ransomware delivered… Continue reading Cerber ransomware delivered in format of a different order of Magnitude→

Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain

Posted on August 2, 2017 by Jérôme Segura

This post shines some light on a ‘gate’ belonging to the geo-targeted Magnitude exploit kit.
Categories:
Cybercrime
Exploits
Tags: cerberEKexploit kitkoreaMagnigateMagnitudemalvertisingransomware

(Read more…)

The post Enemy at the gates: Reviewi… Continue reading Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain→

Google Study Quantifies Ransomware Profits

Posted on July 27, 2017 by Tom Spring

A ransomware study released Google revealed the malware earned criminals $25 million over the past two years. Continue reading Google Study Quantifies Ransomware Profits→

Report: Second quarter dominated by ransomware outbreaks

Posted on July 6, 2017 by Malwarebytes Labs

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Malwarebytes news

Tags: ad fraud adam kujawa Adam McNeil adware Amazon Phishing Armando Orozco astrum boaxxee breach breaches cerber cybercrime tactics & techniques cybercrime tactics and techniques dok DoublePulsar EK EternalBlue EternalPetya exploit kit Findzip fireball handbrake Jaff Jean-Philippe Taggart Jerome Segura kovter Locky Magnitude Malwarebytes malwarebytes labs Marcelo Rivero Nathan Collier NotPetya NSA nymain petya Pieter Artnz proton proton RAT Q2 2017 RIG second quarter ShadowBrokers Tamy Stewart tech support scams Thomas Reed Troldesh WannaCry WDFLoad William Tsing

Continue reading Report: Second quarter dominated by ransomware outbreaks→