Locky – Page 3 – Computer Security Articles

World Backup Day is as good as any to back up your data

March 28, 2017 admin 3-2-1 rule, Advanced persistent threats, Antimalware research for IT pros and enthusiasts, backup, Cerber, data-wiping malware, Depriz, Locky, Microsoft OneDrive, Microsoft OneDrive for Business, ransomware, ransomware backup and recovery, Windows Defender, Windows Defender Advaned Threat Protection, Windows Defender Antivirus

Credit to Author: msft-mmpc| Date: Tue, 28 Mar 2017 21:04:31 +0000

In today’s security landscape, there are more threats to data than ever before. Beyond corruption caused by hardware or human failure, malware and cyberattacks can put data in serious danger. That’s why it’s imperative for enterprises, small-and-medium businesses, and individuals to back up data. It must be implemented systematically, not just on World Backup Day,…

Microsoft Security

Ransomware operators are hiding malware deeper in installer packages

March 15, 2017 admin Antimalware research for IT pros and enthusiasts, Cerber, Locky, NSIS installers, ransomware, Windows 10, Windows Defender

Credit to Author: msft-mmpc| Date: Thu, 16 Mar 2017 03:15:46 +0000

We are seeing a wave of new NSIS installers used in ransomware campaigns. These new installers pack significant updates, indicating a collective move by attackers to once again dodge AV detection by changing the way they package malicious code. These changes are observed in installers that drop ransomware like Cerber, Locky, and others. Cybercriminals have…

MalwareBytes Security

Malwarebytes Labs Presents: The Cybercrime Tactics and Techniques Report

March 6, 2017 admin 2016, ad fraud, Cerber, cybercrime, Kovter, Locky, malware, malwarebytes labs, predictions, ransomware, report, Threat analysis, trends

Credit to Author: Malwarebytes Labs| Date: Mon, 06 Mar 2017 18:04:31 +0000

In our first wrap-up of the threat landscape, we are going to cover the trends observed during the last few months of 2016, provide an analyst’s view of the threats, and offer some predictions for the beginning of 2017. Moving forward, every quarter we will bring you a view of the threat landscape through the eyes of Malwarebytes researchers and analysts.

Categories:

Tags: 2016 ad fraud cerber cybercrime kovter Locky malwarebytes labs predictions ransomware report trends

Microsoft Security

Ransomware: a declining nuisance or an evolving menace?

February 14, 2017 admin Antimalware research for IT pros and enthusiasts, Cerber, CornCrypt, Critorni, Dereilock, Donoff, exploit kit, Locky, Meadgive, Microsoft Edge, Microsoft SmartScreen, Nemucod, Neutrino, ransomware, Samas, spam, spora, Telecrypt, Troldesh, Windows 10, Windows 10 Creators Update, Windows Defender, Windows Defender ATP, Zcryptor

Credit to Author: msft-mmpc| Date: Tue, 14 Feb 2017 21:56:15 +0000

The volume of ransomware encounters is on a downward trend. Are we seeing the beginning of the end of this vicious threat? Unfortunately, a look at the attack vectors, the number of unique families released into the wild, and the improvements in malware code reveals otherwise. Ransomware was arguably the biggest security story of 2016….

Microsoft Security

Improved scripts in .lnk files now deliver Kovter in addition to Locky

February 2, 2017 admin .Lnk embedded PowerShell command, Antimalware research for IT pros and enthusiasts, Kovter, Locky, Powershell, ransomware

Cybercriminals are using a combination of improved script and well-maintained download sites in trying to install Locky and Kovter on more computers. A few months ago, we reported an email campaign distributing .lnk files with a malicious script that downloaded Locky ransomware on target computers. Opening the malicious .lnk files executed a PowerShell script that…

MalwareBytes Security

Locky Bart ransomware and backend server analysis

January 31, 2017 admin analysis, Anti-Ransomware, backend server, bart, binary, Locky, Locky Bart ransomware, malware, ransomware, Threat analysis

The developers of Locky Bart already had very successful ransomware campaigns running called “Locky” and “Locky v2”. After some users reported being infected with Locky Bart, we investigated it to find the differences as to gain greater knowledge and understanding of this new version.

Categories:

Tags: analysis Anti-Ransomware backend server bart binary Locky Locky Bart ransomware ransomware

(Read more…)

Microsoft Security

Don’t let this Black Friday/Cyber Monday spam deliver Locky ransomware to you

January 23, 2017 admin anti-malware, Antimalware research for IT pros and enthusiasts, Black Friday, Cyber Monday, JavaScript, JavaScript spam attachment, Locky, malware, MMPC, Nemucod, ransomware, research, spam, Windows Defender

We see it every year: social engineering attacks that take advantage of the online shopping activities around Black Friday and Cyber Monday, targeting customers of online retailers. This year, we’re seeing a spam campaign that Amazon customers need to be wary of. The fake emails pretend to be notifications from the online retailer that a purchase has…

Microsoft Security

MSRT July 2016 – Cerber ransomware

January 23, 2017 admin Antimalware research for IT pros and enthusiasts, Cerber, Cerber infection chain, Exxroute, Locky, Microsoft Malicious Software Removal Tool, MSRT, ransomware, ransomware detection, ransomware mitigation, ransomware recovery

As part of our ongoing effort to provide better malware protection, the July 2016 release of the Microsoft Malicious Software Removal Tool (MSRT) includes detection for Win32/Cerber, a prevalent ransomware family. The inclusion in MSRT complements our Cerber-specific family detections in Windows Defender, and our ransomware-dedicated cloud protection features. We started seeing Cerber in February…