Decryption Utility Unlocks Files Encrypted by Jaff Ransomware

Researchers have neutralized the latest strain of the Jaff ransomware, releasing a decryption tool for unlocking files. Continue reading Decryption Utility Unlocks Files Encrypted by Jaff Ransomware

New Jaff Ransomware Part Of Active Necurs Spam Blitz

A new malware family called Jaff has been identified by researchers who say they are currently tracking multiple and massive spam campaigns distributing the malware via the Necurs botnet. Continue reading New Jaff Ransomware Part Of Active Necurs Spam Blitz

New ‘Jaff’ ransomware via Necurs asks for 2 BTC

The dreaded Necurs botnet delivers a new ransomware with a high ransom ask in this newest spam campaign.

Categories:

Tags:

(Read more…)

The post New ‘Jaff’ ransomware via Necurs asks for 2 BTC appeared first on Malwarebytes Labs.

Continue reading New ‘Jaff’ ransomware via Necurs asks for 2 BTC

more malware via embedded word macro docs in pdf attachments

Nothing special about the emails that are delivering this malware version. It is a typical  well used email template with subjects varying from with literally hundreds if not thousands of subjects. These generally deliver either Locky ransomware or Dridex banking Trojan File_69348406 PDF_9859 Scan_2441975 Document_11048 Copy_9762   They all have Continue reading → Continue reading more malware via embedded word macro docs in pdf attachments

The Locky onslaught continues with blank PDF attachments containing embedded macro word docs.

Still Continuing from Last Friday’s return of Locky, overnight ( UK time) we are seeing another 2 mass malspam onslaughts with different email subjects. The first is confirmation_12345678.pdf ( random numbers) pretending to come from info@random.tld  with a PDF attachment that contains an embedded malicious word doc with macros that delivers Locky … Continue reading → Continue reading The Locky onslaught continues with blank PDF attachments containing embedded macro word docs.

The Necurs Botnet: A Pandora’s Box of Malicious Spam

Since its initial launch five years ago, the Necurs botnet has quickly ascended the cybercriminal ranks. Today, it controls more than 6 million endpoints.

The post The Necurs Botnet: A Pandora’s Box of Malicious Spam appeared first on Security Intelligence.

Continue reading The Necurs Botnet: A Pandora’s Box of Malicious Spam

A week in security (Apr 17 – Apr 23)

A compilation of notable security news and blog posts from the 17th of April to the 23rd. We focused on the return of Locky ransomware, Moker Trojan, and more.

Categories:

Tags:

(Read more…)

The post A week in security (Apr 17 – Apr 23) appeared first on Malwarebytes Labs.

Continue reading A week in security (Apr 17 – Apr 23)

Locky continues using pdf files with embedded macro word docs

Continuing from Last Friday’s return of Locky, today we are seeing another mass malspam onslaught with 2 separate email with the subject of Scan Data  or 12345678.pdf ( random numbers) pretending to come from random email addresses at your own email domain  with a PDF attachment that contains an embedded malicious word … Continue reading → Continue reading Locky continues using pdf files with embedded macro word docs