Tag: ransomware

Mamba Ransomware Pokes Its Head Back Up
Device Security, Hacking

Mamba Ransomware Pokes Its Head Back Up

The ransomware that wreaked havoc on San Francisco’s Muni mass transit system last Thanksgiving has resurfaced and is infecting enterprises in several countries around the world. The Mamba ransomware used in these attacks isn’t one of the big-name variants like Cryptolocker or Petya, but it has the potential to cause […]

Trickbot Adds New Worm Capability
Hacking

Trickbot Adds New Worm Capability

Malware authors and cybercrime gangs, like professionals in legitimate fields, watch their competition closely and take what works and add it to their own arsenals. The latest evidence of this comes in the form of a new function added to the Trickbot banking trojan that allows it to spread in […]

Tens of Thousands of Machines Still Open to EternalBlue Bug
Device Security, Hacking

Tens of Thousands of Machines Still Open to EternalBlue Bug

Weeks after the WannaCry and NotPetya ransomware campaigns emerged and months after Microsoft released a patch for the vulnerability the two pieces of malware used to spread, more than 60,000 machines are still vulnerable to the bug. The vulnerability, which lies in Microsoft’s implementation of the SMB protocol, has been […]

Android Ransomware Threatens to Leak Victim Data
Device Security, Hacking

Android Ransomware Threatens to Leak Victim Data

The attacker community is continuing to expand the variety of ransomware strains it creates, including a recent variant that doesn’t encrypt victims’ files but instead threatens to send personal data and photos to their contacts. Researchers at McAfee discovered this ransomware variant buried within a couple of apps in the […]

Ukrainian Police Seize Servers in NotPetya Investigation
Device Security, Hacking

Ukrainian Police Seize Servers in NotPetya Investigation

UPDATE–Police in Ukraine have confiscated several servers from the software company that develops the M.E. Doc accounting software that is believed to have been an unwitting part of the distribution process for the NotPetya ransomware. Soon after the emergence of NotPetya last week, security researchers from several organizations zeroed in on […]

NATO: NotPetya Likely the Work of State Attackers
Device Security, Hacking

NATO: NotPetya Likely the Work of State Attackers

The NotPetya ransomware that hit thousands of computers last week likely was created and launched by state-sponsored attackers, according to a new analysis by security experts at NATO. Based on the complexity and estimated cost of the operation, analysts at NATO’s Cooperative Cyber Defense Center of Excellence concluded that NotPetya […]

New Windows 10 Feature Aims to Halt Ransomware
Device Security

New Windows 10 Feature Aims to Halt Ransomware

Microsoft is aiming to change the success rate of ransomware with a new security feature in Windows 10 that will define a set of folders that can only be accessed by approved apps. The feature is included in the latest interim build of Windows 10 and it comes at a time […]

Petya-Derived Ransomware Is Acting Like Shamoon
Device Security, Hacking

Petya-Derived Ransomware Is Acting Like Shamoon

UPDATE–Security researchers are continuing to delve into the details of the latest ransomware outbreak, and have found that the ExPetr ransomware has a number of interesting characteristics that separate it from other variants and raise questions about its purpose. The ExPetr or NotPetya ransomware shares some code and behavior with the […]