Heimadal Security

SEPTEMBER 26, 2022

Exmatter, a well-known data exfiltration malware used by the BlackMatter ransomware group, has been spotted operating a new tactic. The malware was upgraded with data corruption functionality which might show a switch in the field of ransomware attacks with hackers preferring deserting the encryption tactic.

Ransomware 83

Ransomware Encryption Malware Cybersecurity 83

CyberSecurity Insiders

FEBRUARY 25, 2022

This blog was jointly written with Santiago Cortes. AT&T Alien Labs™ is writing this report about recently created ransomware malware dubbed BlackCat which was used in a January 2022 campaign against two international oil companies headquartered in Germany, Oiltanking and Mabanaft. Executive summary. Background.

Ransomware 119

Ransomware Encryption Malware Backups 119

SecureList

AUGUST 12, 2021

These statistics are based on detection verdicts of Kaspersky products received from users who consented to providing statistical data. According to Kaspersky Security Network, in Q2 2021: Kaspersky solutions blocked 1,686,025,551 attacks from online resources across the globe. Geography of financial malware attacks. Tajikistan.

Adware 91

Adware Malware Ransomware IoT 91

SecureList

AUGUST 15, 2022

Targeted attacks. New technique for installing fileless malware. Earlier this year, we discovered a malicious campaign that employed a new technique for installing fileless malware on target machines by injecting a shellcode directly into Windows event logs. The attackers then intercept the request and respond to it.

Mobile 79

Mobile Ransomware Malware Encryption 79

SecureList

MAY 27, 2022

Targeted attacks. Further analysis revealed that the attackers had modified a single component in the firmware in a way that allowed them to intercept the original execution flow of the machine’s boot sequence and introduce a sophisticated infection chain. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022.

Phishing 103

Phishing Spyware Firmware Malware 103

SecureList

APRIL 27, 2022

On January 14, 70 Ukrainian websites were defaced: the attackers posted the message “be afraid and expect the worst” The defacement message on the Ministry of Foreign Affairs website, written in Ukrainian, Russian and Polish, suggested that personal data uploaded to the site had been destroyed.

Malware 130

Malware Firmware Government Phishing 130

Security Boulevard

APRIL 13, 2022

In addition, IT teams and other groups may rely on shell scripts to automate critical business functions such as onboarding new employees, backing up critical databases, or performing network security functions. Some savvy cybercriminals are now software developers and have gotten smarter with their attacks.

Software 52

Software Firmware IoT Internet 52