gandcrab – Page 4 – WindowsTechs.com

ThreatList: Top 5 Most Dangerous Attachment Types

Posted on May 13, 2019 by Lindsey O'Donnell

From ZIP attachments spreading Gandcrab, to DOC files distributing Trickbot, researchers tracked five widescale spam campaigns in 2019 that have made use of malicious attachments. Continue reading ThreatList: Top 5 Most Dangerous Attachment Types→

MegaCortex ransomware distracts victims with Matrix film references

Posted on May 7, 2019 by John E Dunn

One moment, the defenders’ network looked secure but the next, as if out of nowhere, the ransom note pops up. Continue reading MegaCortex ransomware distracts victims with Matrix film references→

Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

Posted on May 6, 2019 by Tara Seals

Snowballing attacks using a recently patched critical bug show no sign of abating. Continue reading Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig→

Meet Sodinokibi, a ransomware strain that exploits a critical Oracle server flaw

Posted on April 30, 2019 by Jeff Stone

Hackers are exploiting a critical vulnerability in a widely used Oracle service to distribute a new strain of ransomware that attempts to encrypt data in a user’s directory, then make recovery more difficult by deleting trustworthy backups, according to research published Tuesday. Attackers are trying to infect victims with a new variant of the Sodinokibi ransomware by leveraging a known security flaw in Oracle’s WebLogic Server, according to Cisco’s Talos threat research team. The digital extortionists are exploiting the flaw known as CVE-2019-2725, a bug with a severity score of 9.8 out of 10 that Oracle sought to squash with a patch issued April 26, outside the company’s normal patch cycle. “Historically, most varieties of ransomware have required some form of user interaction, such as a user opening an attachment to an email message, clicking on a malicious link, or running a piece of malware on the device,” Cisco’s Talos […]

The post Meet Sodinokibi, a ransomware strain that exploits a critical Oracle server flaw appeared first on CyberScoop.

Continue reading Meet Sodinokibi, a ransomware strain that exploits a critical Oracle server flaw→

GandCrab ransomware claims another healthcare firm

Posted on April 25, 2019 by Filip Truta

A medical billing service headquartered in Massachusetts has notified patients of a data breach, saying hackers may have exposed their data. The attack involved the infamous GandCrab ransomware. Cyber crooks have developed a taste for healthcare instit… Continue reading GandCrab ransomware claims another healthcare firm→

Nevada data center used to distribute Dridex, GandCrab malware right under the FBI’s nose

Posted on April 4, 2019 by Jeff Stone

Scammers used data centers located in the United States to launch nasty strains of malware against English-speaking web users, according to Bromium research published Thursday. The hacking campaign lasted from May 2018 to last month, and included five families of banking trojans, two families of ransomware and three forms of malware meant to collect victims’ personal information. The cybercriminal operation relied on U.S. data centers, with 11 web servers hosted at BuyVM, a virtual private server company in Nevada. The malware — identified as Neutrino, IcedID, GandCrab, and Dridex, among others — is estimated to have stolen millions from international banks. The location alone makes this operation unusual, Bromium noted, because hackers typically organize in areas outside the FBI’s reach. “It was interesting to us that the hosting infrastructure is located in the United States and not a jurisdiction that is known to be uncooperative with law enforcement,” the researchers […]

The post Nevada data center used to distribute Dridex, GandCrab malware right under the FBI’s nose appeared first on CyberScoop.

Continue reading Nevada data center used to distribute Dridex, GandCrab malware right under the FBI’s nose→

Mapping Out a Malware Distribution Network

Posted on April 4, 2019 by Bromium Labs

More than a dozen US-based web servers were used to host 10 malware families, distributed through mass phishing campaigns. Malware families include Dridex, GandCrab, Neutrino, IcedID and others. Evidence suggests the existence of distinct threat actors… Continue reading Mapping Out a Malware Distribution Network→

PuTTY, 2FA, & GrandCrab With VMRay – Hack Naked News #211

Posted on March 20, 2019 by Mark Anderton

Zero-Days in Counter Strike client could be used to build a major botnet, huge aluminum plants hit by ‘severe’ ransomware attack, Myspace loses 50 million songs in server migration, wifi signals can reveal your password, and PuTTY in yo… Continue reading PuTTY, 2FA, & GrandCrab With VMRay – Hack Naked News #211→

Chinese government falls victim to GandCrab 5.2 ransomware

Posted on March 15, 2019 by Filip Truta

Allegations that China is in the crosshairs of North Korean hackers have arisen after the discovery of ransomware-laden emails hitting the inboxes of government departments. The emails contain version 5.2 of the GandCrab ransomware concealed as an arch… Continue reading Chinese government falls victim to GandCrab 5.2 ransomware→

GandCrab: Wishing You an Unhappy Birthday

Posted on March 15, 2019 by Tamas Boczan

A source of much misery, the GandCrab family of ransomware has had a very successful first year. But there’s plenty you can do about it. GandCrab debuted in late January 2018 and quickly became a favorite with attackers and a source of misery and expe… Continue reading GandCrab: Wishing You an Unhappy Birthday→