Collaborate Disseminate
Research by security firms places Ryuk and Sodinokibi as two of the prime ransomware threats facing enterprises today. While some reports illustrate ransomware infections across the board, ransom amounts have almost tripled from quarter to quarter for… Continue reading Sodinokibi and the Successful Tactics it Uses
I published the following diary on isc.sans.edu: “Rig Exploit Kit Delivering VBScript“: I detected the following suspicious traffic on a corporate network. It was based on multiples infection stages and looked interesting enough to publish a diary about it. This is also a good reminder that, just by surfing the
[The post [SANS ISC] Rig Exploit Kit Delivering VBScript has been first published on /dev/random]
Continue reading [SANS ISC] Rig Exploit Kit Delivering VBScript
The proxy is being distributed by the RIG and Fallout exploit kits. Continue reading Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth
Just like the beach, the EK landscape got a little crowded this summer. Find out what we discovered in our exploit kits summer review.
Categories:
Exploits
Threat analysis
Tags: drive-by downloadsdrive-bysEKEKsexploit kitsgrandsoftGreenFlash S… Continue reading Exploit kits: summer 2018 review
Here is a look at what exploit kits, CVEs and other web-based threats are keeping security professionals working overtime in 2018. Continue reading ThreatList: Exploit Kits Still a Top Web-based Threat
In this Winter 2018 review, we check the pulse of exploit kits and their latest developments.
Categories:
Exploits
Threat analysis
Tags: CVE-2014-6332CVE-2015-2419CVE-2015-7645CVE-2015-8651CVE-2016-0189CVE-2018-4878EKsexploit kitsgrandsoftGreen… Continue reading Exploit kits: Winter 2018 review
This malvertising campaign uses a popular cryptocurrency theme to redirect users to the RIG exploit kit.
Categories:
Exploits
Threat analysis
Tags: cryptocurrenciesmalvertisingRIGRIGEK
(Read more…)
The post New RIG malvertising campa… Continue reading New RIG malvertising campaign uses cryptocurrency theme as decoy
Ransomware may have slowed its growth but is still a go-to payload for threat actors looking to monetize drive-by download attacks. The latest attempt: GandCrab ransomware.
Categories:
Exploits
Threat analysis
Tags: exploit kitsgandcrabgandcrab… Continue reading GandCrab ransomware distributed by RIG and GrandSoft exploit kits
The most prolific gate to the RIG exploit kit is coming in a different flavor. The Seamless campaign is now using a domain name with foreign characters translated by Punycode.
Categories:
Exploits
Threat analysis
Tags: phishingPunycoderamnitRam… Continue reading Seamless campaign serves RIG EK via Punycode
 |
|
| Last week, we looked at what actions Kronos can perform in the final installment of a 2-part post. We also dived into Locky, again, a ransomware that just made a comeback, and found that its latest variant (as of this writing) has anti-sandboxing capabilities. This means that once Locky has determined that it’s residing in…
Categories: Tags: 419 scamexploit kitinsider threatskronosLockymalvertisingPrincessLockerransomwarerecapRIGsecurityweekly blog roundup |
The post A week in security (August 28 – September 3) appeared first on Malwarebytes Labs.
Continue reading A week in security (August 28 – September 3)