1. upnorth

    Operation Bakovia - Romanian Police Arrest 5 People for Spreading CTB Locker and Cerber Ransomware

    Quote : " Under Operation Bakovia—a major global police operation conducted by Europol, the FBI and law enforcement agencies from Romanian, Dutch, and the UK—raided six houses in East Romania and made five arrests, Europol said on Wednesday. Authorities have seized a significant amount of hard...
  2. upnorth

    Off-Topic Stopping the Explosion of Ransomware

    A good educational talk about Ransomware what it is and how to handle it with Erich Kron. He is the former security manager for the 2nd Regional Cyber Center-Western Hemisphere and holds CISSP, CISSP-ISSAP, MCITP and ITIL v3 certifications, among others. The video is about 40 minutes long. Enjoy!
  3. D

    Ransomware-as-a-Service: Commoditizing ransomware

    One of the most profound changes in the modern business landscape has been the gradual shift to the Subscription Economy. In years gone by, you handed over your hard-earned money and in return received a product or service that was yours to keep. Now, both companies and consumers are ditching...
  4. silversurfer

    Security Alert Ransomware Targets SMBs via RDP Attacks

    A series of ransomware attacks against small-to-medium companies are leveraging Remote Desktop Protocol (RDP) access to infect systems, Sophos reports.
  5. silversurfer

    Malware Alert Sage Ransomware Gets Anti-Analysis Capabilities

    The Sage ransomware, which emerged toward the beginning of this year, has added new functionality that allows it to escalate privileges and evade analysis, Fortinet warns. The malware was highly active in early 2017, but hasn’t shown significant activity over the past six months. Recently found...
  6. silversurfer

    Malware Alert Locky Uses DDE Attack for Distribution

    While continuing to spread via spam emails sent by the Necurs botnet, the Locky ransomware has switched to new attack techniques in recent campaigns, in an attempt to evade detection and improve infection rate. One of the methods involves the use of the Dynamic Data Exchange (DDE) protocol...
  7. D

    The 10 most ridiculous ransomware we’ve ever seen

    Read more here
  8. silversurfer

    Malware Alert DoubleLocker Android Ransomware Explained

    Cybercriminals have developed an innovative ransomware that is based on the foundations of a particular banking Trojan to misuse Android accessibility services. Discovered by ESET malware researcher, Lukáš Štefanko, DoubleLocker, has two powerful tools for extorting money from its victims, and...
  9. frogboy

    Malware Alert Android DoubleLocker Ransomware Activates Every Time You Hit Home Button

    A new ransomware targeting Android devices has been spotted in the wild. Codenamed DoubleLocker, the ransomware abuses Android's Accessibility service and reactivates itself every time the user presses the phone's Home button. This particular ransomware strain has connections to the infamous...
  10. frogboy

    Malware Alert New EMPTY CryptoMix Ransomware Variant Released

    Yesterday, MalwareHunterTeam discovered a new variant of the CryptoMix ransomware that is appending the .EMPTY extension to encrypted file names. Considering that the previous variant used ERROR as the previous extension and now uses empty, it is clear that the developers are running out of...
  11. silversurfer

    Malware Alert Locky Ransomware Campaign Ramps Up

    The Locky ransomware family that dominated the charts last year has returned, and has been distributed through high volume campaigns over the past week. Closely tied to the activity of the Necurs botnet, Locky has been nearly completely absent from the threat landscape this year. Following...
  12. silversurfer

    Malware Alert Cerber Ransomware Creates Self-Inflicted Canary Vaccine

    The old canary-in-the-coal-mine and the new canary file serve the same purpose. Both are threat detectors: the former to detect the presence of poisonous gas in a mine, and the latter to detect an unauthorized presence in a file system. The canary file is particularly useful as an early-warning...
  13. Arin

    Q&A Can I use Kaspersky Anti-Ransomware with KIS 2017 ?

    Can I use Kaspersky Anti-Ransomware with KIS 2017 ? Is it a good idea ??
  14. Parsh

    Security Alert WannaCry Decryption Tools Released; Unlock Files Without Paying Ransom

    Since Friday, more than three lakh computers in over 150 countries have been in the grips of WannaCry attack, with their workstations locked for ransom. While the famous variant is still attacking the unpatched PCs around the world, some hope can be seen now with the release of decryption...
  15. jelson

    Q&A Ransomware protection for the average user?

    Recently, I just discovered... to my shock... that most of my friends have not yet heard about ransomware! Of course, that begs the question of what program I should recommend for them so that have some protection beyond a Security Suite (typically I recommend Kaspersky IS to them.)...
  16. frogboy

    Non-Malware Attacks on the Rise, in the Shadow of Ransomware

    2016 saw attackers holding data for ransom at an alarming rate; but in conjunction with the rise of ransomware and the continued ubiquity of mass malware, attackers are increasingly utilizing non-malware attacks in an attempt to remain undetected and persistent in organizations’ networks...