{"id":8249,"date":"2017-07-06T15:10:08","date_gmt":"2017-07-06T23:10:08","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/07\/06\/news-2023\/"},"modified":"2017-07-06T15:10:08","modified_gmt":"2017-07-06T23:10:08","slug":"news-2023","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2017\/07\/06\/news-2023\/","title":{"rendered":"Report: Second quarter dominated by ransomware outbreaks"},"content":{"rendered":"

Credit to Author: Malwarebytes Labs| Date: Thu, 06 Jul 2017 19:06:53 +0000<\/strong><\/p>\n

The second quarter of 2017 brought ransomware to unprecedented levels with worldwide outbreaks that went almost out of control. In scenarios reminiscent of yesteryears worms, WannaCry<\/a> created global panic as it used a critical vulnerability in the SMBv1 protocol to propagate like wildfire.<\/p>\n

Within hours, hundreds of thousands of machines in over 150 countries were infected and as investigations into the attacks went on, it was discovered that other threat actors had also been leveraging the leaked government-created exploits.<\/p>\n

Ransomware continued to be\u00a0the most distributed type of malware, topping 70% of all threats in June with the likes of Cerber, Troldesh, and Jaff. Interestingly, we witnessed other payloads delivered\u00a0alongside ransomware, infecting users with Cerber, Kovter, Nymain, and Boaxxee all at once.<\/p>\n

In this report, we will provide a quick update on the ransomware that does not want to die off, namely Locky and also review the latest outbreak with the rebranded Petya<\/a> that wreaked havoc in the Ukraine and affected several multinational companies.<\/p>\n

With all this ransomware buzz, we can’t forget about the “other threats” which, as a matter of fact, were also somewhat influenced by the aforementioned events. Malvertising was the major engine behind drive-by download attacks that leveraged various exploit kits, most notably RIG EK, Magnitude EK and Astrum EK.<\/p>\n

We noted new and somewhat unexpected tech support scam campaigns, with for instance the use of spam and fake Amazon notifications. Typically those come with malicious attachments but in this instance, they contained\u00a0links that ultimately locked up the user’s browser and urged to dial the so-called Microsoft technicians.<\/p>\n

Finally, this report wouldn’t be complete without our usual Researcher Spotlight section, featuring Jean-Philippe ‘Tinfoil Hat’ Taggart.<\/p>\n

Download full report here<\/a><\/h2>\n

Thanks for reading and safe surfing!<\/p>\n

The post Report: Second quarter dominated by ransomware outbreaks<\/a> appeared first on Malwarebytes Labs<\/a>.<\/p>\n

https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Malwarebytes Labs| Date: Thu, 06 Jul 2017 19:06:53 +0000<\/strong><\/p>\n\n\n\n
<\/a><\/td>\n<\/tr>\n
The second quarter of 2017 left the security world wondering, \u201cWhat the hell happened?\u201d With leaks of government-created exploits being deployed against users in the wild, a continued sea of ransomware constantly threatening our ability to work online, and the lines between malware and potentially unwanted programs continuing to blur, every new incident was a wakeup call.In this report, we are going to discuss some of the most important trends, tactics, and attacks of Q2 2017, including an update on ransomware, what is going on with all these exploits, and a special look at all the breaches that happened this quarter. <\/p>\n

Categories: <\/p>\n