PYSA, the ransomware attacking schools

Credit to Author: Jovi Umawing| Date: Tue, 30 Mar 2021 15:56:44 +0000

PYSA is big game ransomware that’s been used in targeted attacks against large private organizations, healthcare, and most recently, the education sector.

Categories: RansomwareThreat spotlight

Tags:

(Read more…)

The post PYSA, the ransomware attacking schools appeared first on Malwarebytes Labs.

Read more

HelloKitty: When Cyberpunk met cy-purr-crime

Credit to Author: Jovi Umawing| Date: Thu, 18 Mar 2021 12:01:00 +0000

HelloKitty was a relatively unheard-of ransomware family—until it became involved in an attack against the Polish video game developer, CD Projekt Red, in early February.

Categories: Threat spotlight

Tags:

(Read more…)

The post HelloKitty: When Cyberpunk met cy-purr-crime appeared first on Malwarebytes Labs.

Read more

Ryuk ransomware develops worm-like capability

Credit to Author: Pieter Arntz| Date: Tue, 02 Mar 2021 20:07:12 +0000

French researchers have found a Ryuk ransomware variant that can spread laterally through an infected network.

Categories: Malwarebytes news

Tags:

(Read more…)

The post Ryuk ransomware develops worm-like capability appeared first on Malwarebytes Labs.

Read more

Threat profile: Egregor ransomware is making a name for itself

Credit to Author: Pieter Arntz| Date: Tue, 15 Dec 2020 13:58:58 +0000

The Egregror ransomware is quickly making a name for itself by victimizing big corporations. How does it work and what is its background?

Categories: RansomwareThreat spotlight

Tags:

(Read more…)

The post Threat profile: Egregor ransomware is making a name for itself appeared first on Malwarebytes Labs.

Read more

Threat spotlight: WastedLocker, customized ransomware

Credit to Author: Pieter Arntz| Date: Fri, 10 Jul 2020 18:10:37 +0000

WastedLocker ransomware, attributed to the Russian Evil Corp gang, is such a targeted threat, you might call it a custom-built ransomware family.

Categories:

Tags:

(Read more…)

The post Threat spotlight: WastedLocker, customized ransomware appeared first on Malwarebytes Labs.

Read more

Search hijackers change Chrome policy to remote administration

Credit to Author: Pieter Arntz| Date: Thu, 11 Jun 2020 15:30:00 +0000

Search hijackers are always looking for ways to get and stay installed. Here is one that changed a Chrome policy and set it to remote administration.

Categories:

Tags:

(Read more…)

The post Search hijackers change Chrome policy to remote administration appeared first on Malwarebytes Labs.

Read more

Maze: the ransomware that introduced an extra twist

Credit to Author: Pieter Arntz| Date: Fri, 29 May 2020 15:00:00 +0000

Maze ransomware attacks featured the first group of cyber-criminals to add the threat of publishing exfiltrated data to the ransomware business model

Categories:

Tags:

(Read more…)

The post Maze: the ransomware that introduced an extra twist appeared first on Malwarebytes Labs.

Read more

Threat spotlight: RobbinHood ransomware takes the driver’s seat

Credit to Author: Pieter Arntz| Date: Thu, 20 Feb 2020 18:09:03 +0000

RobbinHood a is a ransomware family that specifically targets organizations using a vulnerable kernel driver to prepare systems for encryption. Learn how to protect against it.

Categories:

Tags:

(Read more…)

The post Threat spotlight: RobbinHood ransomware takes the driver’s seat appeared first on Malwarebytes Labs.

Read more