website ransomware – WindowsTechs.com

Obfuscation Techniques in Ransomweb “Ransomware”

Posted on January 12, 2021 by Luke Leal

As vital assets for many business operations, websites and their hosting servers are often the target of ransomware attacks — and if they get taken offline, this can cause major issues for a business’ data, revenue, and ultimately reputation.
The wors… Continue reading Obfuscation Techniques in Ransomweb “Ransomware”→

What is Ransomware?

Posted on February 12, 2020 by Justin Channell

Ransomware has been one of the scariest topics in cybersecurity for years – and for good reason.
Living up to its name, ransomware is a type of malware where a bad actor blocks access to data or applications until payment is received. In other w… Continue reading What is Ransomware?→

Troldesh Ransomware Dropper

Posted on August 12, 2019 by Luke Leal

Over the past few weeks, we’ve seen an increase in Troldesh ransomware using compromised websites as intermediary malware distributors.
The malware often uses a PHP file that acts as a delivery tool for downloading the host malware dropper:
hxxp… Continue reading Troldesh Ransomware Dropper→

Fake Browser Updates Push Ransomware and Bank Malware

Posted on February 28, 2019 by Denis Sinegubko

Recently we came across a malicious campaign injecting scripts that push fake browser updates onto site visitors.
This is what a typical fake update request looks like:
Users see a message box that says it’s an “Update Center” for yo… Continue reading Fake Browser Updates Push Ransomware and Bank Malware→

Ransomnix ransomware variant encrypts websites

Posted on April 28, 2018 by Bart

Ransomnix is a (likely Jigsaw) ransomware variant that holds websites for ransom, and encrypts any files associated with the website.
This ransomware was discovered in the second half of 2018, and there’s a brief write-up by Amigo-A here as well: … Continue reading Ransomnix ransomware variant encrypts websites→