SecureList

NOVEMBER 23, 2021

The Conti Gang was another group that also had issues with their associates when an apparently vengeful affiliate leaked the ransomware group’s playbook after claiming the notorious cybercriminal organization underpaid him for doing its dirty work. In April 2021, the Andariel group attempted to spread custom Ransomware.

Cryptocurrency 121

Cryptocurrency Banking Cybercrime Ransomware 121

Spinone

NOVEMBER 1, 2019

DLP is included in the organization policy, but individuals must also use this strategy to keep all data safe during ransomware or malware attack. Data encryption – a way to secure private information by encoding it so no third parties could watch or access it. You can see how ransomware looks below.

Passwords 40

Passwords Social Engineering Malware Encryption 40

SecureList

AUGUST 12, 2021

Communication with the server can take place either over raw TCP sockets encrypted with RC4, or via HTTPS. Andariel adds ransomware to its toolset. Notably, in addition to the final backdoor, we discovered one victim infected with custom ransomware, underlying the financial motivation of this threat actor. Ferocious Kitten.

Ransomware 140

Ransomware Malware Banking Encryption 140

SecureList

AUGUST 12, 2021

Ransomware attacks were defeated on the computers of 97,451 unique users. Ransomware programs. Ransomware attacks on large organizations continued in Q2. The new rule forbade the advertising and selling of any ransomware programs on the site. Number of new ransomware modifications. Geography of ransomware attacks.

Adware 102

Adware Malware Ransomware IoT 102

SecureList

MAY 27, 2022

Ransomware attacks were defeated on the computers of 74,694 unique users. Ransomware programs. Several members of the REvil ransomware crime group were arrested by Russian law enforcement in January. In January, Ukrainian police arrested a ransomware gang who delivered an unclarified strain of malware via e-mail.

Mobile 113

Mobile Adware Ransomware Malware 113

SecureList

NOVEMBER 18, 2022

Andariel deploys DTrack and Maui ransomware. On 6 July, the US CISA (Cybersecurity and Infrastructure Security Agency) published an alert in which they accused North Korean state-sponsored threat actors of using the Maui ransomware to target the US healthcare sector. Luna and Black Basta: new ransomware for Windows, Linux and ESXi.

Malware 111

Malware Computers and Electronics Adware Cryptocurrency 111

SecureList

AUGUST 15, 2022

Ransomware attacks were defeated on the computers of 74,377 unique users. Ransomware programs. The cybercriminals are promising $1,000 to $1,000,000 for doxing of senior officials, reporting web service, Tox messenger or ransomware Trojan algorithm vulnerabilities, as well as for ideas on improving the Lockbit website and Trojan.

Mobile 65

Mobile Adware Malware Ransomware 65

eSecurity Planet

MARCH 14, 2023

Encryption will regularly be used to protect the data from interception. In the broadest sense, defense in depth uses: Data security : protects data at rest and in transit such as encryption, database security, message security, etc. Encryption Security teams should no longer assume that networks are safe. or network traffic.

Network Security 98

Network Security Firewall Penetration Testing Encryption 98

SecureList

MAY 31, 2021

We believe that the most significant aspect of the Ecipekac malware is that the encrypted shellcodes are inserted into digitally signed DLLs without affecting the validity of the digital signature. Ransomware encrypting virtual hard disks. Most malicious objects detected for the macOS platform are adware.

Malware 110

Malware Adware Encryption Architecture 110

SecureList

NOVEMBER 18, 2022

Ransomware attacks were defeated on the computers of 72,941 unique users. Ransomware programs. The third quarter of 2022 saw the builder for LockBit, a well-known ransomware, leaked online. LockBit themselves attributed the leakage to one of their developers’ personal initiative, not the group’s getting hacked.

Mobile 96

Mobile Malware Ransomware IoT 96

SecureList

JUNE 7, 2023

Ransomware attacks were defeated on the computers of 60,900 unique users. In Q1 2023, we discovered builds from several ransomware families intended for running on Linux and VMWare ESXi servers, namely: ESXiArgs (new family), Nevada (a rebranding of Nokoyawa, which is written in Rust), Royal, IceFire. Most prolific ransomware gangs.

Mobile 69

Mobile Ransomware Malware Adware 69

SecureList

NOVEMBER 26, 2021

Ransomware attacks were defeated on the computers of 108,323 unique users. Ransomware programs. According to the hacking forum XSS, the group’s former public representative known as UNKN “disappeared”, and the malware developers, failing to find him, waited awhile and restored the Trojan infrastructure from backups.

Malware 105

Malware Adware Ransomware IoT 105

SecureList

MAY 26, 2021

56,877 unique users in the EU were attacked by ransomware. Ransomware programs. During the reporting period, we identified more than 17,317 ransomware modifications and detected 25 new families. Note that we did not create a separate family for each new piece of ransomware. Number of users attacked by ransomware Trojans.

Phishing 138

Phishing Malware Ransomware Adware 138

SecureList

DECEMBER 1, 2023

Ransomware attacks were defeated on the computers of 46,872 unique users. Ransomware programs Quarterly trends and highlights Vulnerability exploitation In Q3, ransomware groups were detected exploiting vulnerabilities in various server software. Ramnit 34.0 2 Zbot/Zeus Trojan-Banker.Win32.Zbot 3 Emotet Trojan-Banker.Win32.Emotet

Mobile 85

Mobile Ransomware Malware Adware 85

SecureList

MAY 31, 2021

25,314 packages were related to mobile banking Trojans, 3,596 packages were mobile ransomware Trojans. The majority (61.43%) of the discovered threats belonged to the adware category. Adware accounted for the overwhelming majority (61.43%) of all threats discovered in Q1 2021, a decrease of 12 percentage points from Q4 2020.

Mobile 77

Mobile Adware Banking Malware 77

SecureList

AUGUST 30, 2023

Ransomware attacks were defeated on the computers of 57,612 unique users. Ransomware programs Quarterly trends and highlights MOVEit Transfer vulnerabilities exploited The Cl0p ransomware gang began heavily exploiting vulnerabilities in MOVEit Transfer, a secure file transfer software solution used by organizations around the world.

Mobile 82

Mobile Ransomware Malware Adware 82