GandCrab Riding Emotet’s Bus!

Credit to Author: Bajrang Mane| Date: Fri, 15 Feb 2019 10:03:57 +0000

Emotet Known for constantly changing its payload and infection vectors like spam mail, Malicious Doc and even Malicious JS files. It compromised a very high number of websites on the internet. Emotet malware campaign has existed since 2014. It comes frequently in intervals with different techniques and variants to deliver malware…

Read more

Businesses: It’s time to implement an anti-phishing plan

Credit to Author: Malwarebytes Labs| Date: Wed, 13 Feb 2019 16:54:28 +0000

If your organization doesn’t have an anti-phishing plan in place, it’s time to start thinking about one. Here’s what to tell your employees and customers about phishing attacks.

Categories:

Tags:

(Read more…)

The post Businesses: It’s time to implement an anti-phishing plan appeared first on Malwarebytes Labs.

Read more

Sextortion Bitcoin scam makes unwelcome return

Credit to Author: Christopher Boyd| Date: Mon, 11 Feb 2019 18:38:53 +0000

A well-worn sextortion scam is back in user’s inboxes. We explain what to look for and why recipients shouldn’t panic.

Categories:

Tags:

(Read more…)

The post Sextortion Bitcoin scam makes unwelcome return appeared first on Malwarebytes Labs.

Read more

GandCrab Ransomware along with Monero Miner and Spammer

Credit to Author: Prashant Tilekar| Date: Thu, 24 Jan 2019 11:54:00 +0000

Recently we saw a new campaign through spam mail attachment- zip file. It contains JavaScript file which delivers a bundle of GandCrab Ransomware, Monero miner and Spammer. This bundle of multiple malware variants is nothing new, it is common for ransomware to be paired with miner and spammer. This type…

Read more

GandCrab says, “We will become back very soon! ;)”

Credit to Author: Anant Pulgam| Date: Tue, 18 Dec 2018 12:44:21 +0000

GandCrab has been in the wild since last week of January 2018. Over the period it kept learning from its mistakes and GandCrab’s agile development grabbed the attention of many security researchers. From moving its servers to Namecoin powered Top Level Domain (.BIT TLD) servers after the first breach, then learning from…

Read more

Ghost Has Arrived

Credit to Author: Ghanshyam More| Date: Fri, 14 Dec 2018 11:58:50 +0000

On the back of an upswing in Ransomware activity, we decided to carry out an in-depth analysis of Ghost Ransomware. Interesting fact about this malware is that it uses multiple components to encrypt user files. Technical Analysis : Main malware executable (Ghost.exe) is compiled using the DotNet Framework. The infection…

Read more

Sophisticated Ransomware : “Katyusha”

Credit to Author: Ghanshyam More| Date: Fri, 14 Dec 2018 10:59:58 +0000

For several months, Quick Heal Security Labs has been observing an increase in ransomware, we have found one more interesting ransomware which encrypts files and adds extension “.katyusha” and demands for an amount of 0.5 btc within three days and threatens to release the data to public download if the ransom is not…

Read more

Data scraping treasure trove found in the wild

Credit to Author: Christopher Boyd| Date: Tue, 11 Dec 2018 16:56:54 +0000

3 large databases containing scraped content landed in front of security researchers. How bad is it?

Categories:

Tags:

(Read more…)

The post Data scraping treasure trove found in the wild appeared first on Malwarebytes Labs.

Read more