The Fallout exploit kit is back in business after a one week hiatus between December 27 and January 4, with new tools under its belt such as a new Flash exploit, HTTPS support, a new landing page format and the capability to deliver payloads using Powershell.
The Fallout exploit kit has previously been observed while pushing a wide range of other malware strains and families, ranging from SAVEfiles Ransomware and Kraken Cryptor Ransomware, to GlobeImposter ransomware, the DanaBot banking Trojan, the Nocturnal information stealer, some malware downloading Trojans, and other potentially unwanted programs (PUPs).
