kovter – WindowsTechs.com

Fileless Malware on the Rise

Posted on October 2, 2019 by Tomas Meskauskas

According to reports analyzing the state of the threat landscape, fileless malware incidents are up to some 265% in the first half of 2019 when compared to the same period in 2018. Fileless malware sometimes has been referred to as a zero-footprint at… Continue reading Fileless Malware on the Rise→

U.S. Charges Two Iranians for SamSam Ransomware Attacks

Posted on November 29, 2018 by Lucian Constantin

The U.S. Department of Justice has charged two Iranian men for creating and distributing a ransomware program called SamSam that caused massive disruptions in hospitals, municipalities and public institutions over the past few years. SamSam appeared i… Continue reading U.S. Charges Two Iranians for SamSam Ransomware Attacks→

FBI Sinkholes $38M Global Ad Fraud Operation

Posted on November 28, 2018 by Tara Seals

The multi-year campaign used malware and botnets to falsify billions of webpages and “site users.” Continue reading FBI Sinkholes $38M Global Ad Fraud Operation→

Eight Individuals Indicted for Perpetrating Digital Advertising Fraud

Posted on November 28, 2018 by David Bisson

A federal indictment charged eight individuals with perpetrating widespread digital advertising fraud that cost businesses millions of dollars. On 27 November, a federal court in Brooklyn unsealed the indictment charging Aleksandr Zhukov, Boris Timokhi… Continue reading Eight Individuals Indicted for Perpetrating Digital Advertising Fraud→

Fileless malware: getting the lowdown on this insidious threat

Posted on August 29, 2018 by Vasilios Hioureas

In this series of articles, we provide an in-depth discussion of fileless malware and their related attacks. In part one, we cover a brief overview of the problems with and general features of fileless malware, laying the groundwork for technical … Continue reading Fileless malware: getting the lowdown on this insidious threat→

Locky Ransomware Variant Slips Past Some Defenses

Posted on August 16, 2017 by Tom Spring

Ransomware called IKARUSdilapidated is managing to slip into unsuspecting organizations as an unknown file.
Continue reading Locky Ransomware Variant Slips Past Some Defenses→

Report: Second quarter dominated by ransomware outbreaks

Posted on July 6, 2017 by Malwarebytes Labs

The second quarter of 2017 left the security world wondering, “What the hell happened?” With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter.

Categories:

Malwarebytes news

Tags: ad fraud adam kujawa Adam McNeil adware Amazon Phishing Armando Orozco astrum boaxxee breach breaches cerber cybercrime tactics & techniques cybercrime tactics and techniques dok DoublePulsar EK EternalBlue EternalPetya exploit kit Findzip fireball handbrake Jaff Jean-Philippe Taggart Jerome Segura kovter Locky Magnitude Malwarebytes malwarebytes labs Marcelo Rivero Nathan Collier NotPetya NSA nymain petya Pieter Artnz proton proton RAT Q2 2017 RIG second quarter ShadowBrokers Tamy Stewart tech support scams Thomas Reed Troldesh WannaCry WDFLoad William Tsing

Continue reading Report: Second quarter dominated by ransomware outbreaks→

return of fake UPS cannot deliver malspam with an updated nemucod ransomware and Kovter payload

Posted on June 29, 2017 by Myonlinesecurity

The UPS failed to deliver messages have come back with a vengeance yesterday. I haven’t seen them in UK for a while now , but it looks like the Kovter gang have taken advantage of the Petya outbreak to add to the mix. They have updated the nemucod ransomware version … Continue reading → Continue reading return of fake UPS cannot deliver malspam with an updated nemucod ransomware and Kovter payload→

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

Posted on June 1, 2017 by Myonlinesecurity

The gangs spreading malware via the “cannot deliver your parcel notifications” or “check where your parcel is” spoofing FedEx, DHL, UPS, USPS etc. have changed delivery method. The emails are still very similar to the ones we are used to seeing with this sort of subject line. USPS issue #06914074: unable to delivery parcel Parcel #006514814 shipment problem, please review USPS parcel #3150281 delivery problem … Continue reading → Continue reading Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware→

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

Posted on June 1, 2017 by Myonlinesecurity