Tags: ransomware

Resurgent Necurs back on top ten malware list

Researchers at Check Point have published their top ten malware list for November 2017. The list shows all bar one piece of malware has been on the move. That malware is RoughTed which is unsurprising as it focuses on malvertising. With the Christmas season upon us and retailers sending out more adverts than some spam engines,…

Is cyber insurance fuelling ransomware?

Researchers at security company WatchGuard have warned that cyber insurance risks fuelling an increase in ransomware. The researchers highlight mandatory breach disclosure as one of the drivers for increased cyber insurance. Companies are increasingly aware of the damage a breach notification can do to their business. As such, they are rightly taking out cyber insurance…

Malwarebytes sees New Mafia launching cyber-attacks

Security vendor Malwarebytes has unveiled a report looking at organised cybercrime. It claims that cyber-attacks on businesses increased by an average of 23 percent per month in 2017 compared to the previous year. In some areas such as ransomware, the increase is more than 20 times that of 2016. At the heart of this increase…

Malwarebytes slams poor AV solutions

Security vendor Malwarebytes has taken aim at the AV industry. It has released details showing how ineffective many AV solutions are. It’s primary target are those AV solutions that rely solely on signature-based detection methods. The blog by Marcin Kleczynski, CEO and Co-Founder, Malwarebytes states: “With signature-based detection methods, traditional AV solutions are simply weak against…

Companies buying Dark Web intelligence

Threat intelligence provider Recorded Future has said that 70% of its customers are using threat intelligence sourced from the dark web. The data is being used to identify compromised assets such as user credentials and intellectual property. It also says that customers are using the data to assess their vulnerability to attack. According to Matt…

Comodo spots Asasin extension used by ransomware

Comodo Threat Intelligence Labs has uncovered a fourth wave of IKARUSdilapidated Locky ransomware attacks. Like previous waves, it is driven by botnets and uses an unknown file extension to bypass security software. The botnets are using a social engineering-based phishing attack targeting both businesses and individuals. The email uses the title Supplement Payment. It appears…

Necurs drives a resurgent Locky

The Locky Ransomware, first detected in February 2016 has surged back up Check Point’s latest Global Threat Index (GTI). It now stands at No 2 in the GTI, only beaten by the Roughted malvertising attack. This is the first time Locky has appeared in the GTI since November 2016. Check Point puts this current rise…

Another wave of Locky Ransomware arrives

Security solutions and digital certification vendor Comodo has reported yet another wave of ransomware attacks. This latest campaign uses the same Locky variant, IKARUSdilapidated, as in previous attacks reported by Comodo. The campaign started on the 18th September and stopped on the 21st September. That does not mean it is over. It is likely that…

IKARUSdilapidated strikes again

Comodo Threat Intelligence has identified a second wave of IKARUSdilapidated Locky ransomware attacks. This is the second time this month that Comodo has detected attacks by this Locky ransomware variant. The details of the attacks have now been made public. IKARUSdilapidated using fake scanned files This second wave of attacks are being launched by a botnet…