Lucene search
K

53 matches found

The Hacker News
The Hacker News
added 2023/07/20 4:56 p.m.39 views

Mallox Ransomware Exploits Weak MS-SQL Servers to Breach Networks

Mallox ransomware activities in 2023 have witnessed a 174% increase when compared to the previous year, new findings from Palo Alto Networks Unit 42 reveal. "Mallox ransomware, like many other ransomware threat actors, follows the double extortion trend: stealing data before encrypting an...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/13 4:40 p.m.11 views

RTM Locker: Emerging Cybercrime Group Targeting Businesses with Ransomware

Cybersecurity researchers have detailed the tactics of a "rising" cybercriminal gang called "Read The Manual" RTM Locker that functions as a private ransomware-as-a-service RaaS provider and carries out opportunistic attacks to generate illicit profit. "The 'Read The Manual' Locker gang uses...

7.2AI score
Exploits0
hivepro
hivepro
added 2023/02/03 1:46 p.m.19 views

Unveiling the Advanced Rust-based Nevada Ransomware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A new type of ransomware named "Nevada Ransomware" has been identified. The creators of this ransomware have established an affiliate program that was initially introduced in the RAMP underground...

3.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/05/19 1:7 p.m.19 views

Cardiologist moonlighted as successful ransomware developer

The US has charged a 55-year-old French-Venezuelan cardiologist from Venezuela with "attempted computer intrusions and conspiracy to commit computer intrusions". This was revealed in an unsealed complaint in a federal court in Brooklyn, New York. Moises Luis Zagala Gonzales worked as a ransomware...

0.2AI score
Exploits0
ThreatPost
ThreatPost
added 2022/05/18 2:36 p.m.30 views

DOJ Says Doctor is Malware Mastermind

On Monday, the U.S. Attorney’s Office for the Eastern District of New York revealed criminal charges against 55 year-old cardiologist Moises Luis Zagala Gonzalez of Cuidad Bolivar, Venezuela accusing him of being the mastermind behind the prolific Thanos malware. The inditement alleges he “design...

7.4AI score
Exploits0References1
Krebs on Security
Krebs on Security
added 2022/01/28 1:18 p.m.29 views

Who Wrote the ALPHV/BlackCat Ransomware Strain?

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV a.k.a. "BlackCat", considered to be the first professional cybercrime group to create and use a ransomware strain written in the Rust programming language. In this post, well explore some of the clues left behind b...

6.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/05/21 6:41 p.m.92 views

DarkSide Getting Taken to ‘Hackers’ Court’ For Not Paying Affiliates

Cybercriminals who have worked as affiliates with ransomware group DarkSide, responsible for the Colonial Pipeline attack, are having a tough time getting paid for their work now that the group has had its operations interrupted; so, they’re turning to admins of the group’s Dark Web criminal foru...

7.2AI score
Exploits0References7
Krebs on Security
Krebs on Security
added 2021/05/14 3:44 p.m.46 views

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The crime gang announced it was closing up shop after its servers were seized and someone drained th...

6.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/02/25 4:46 p.m.42 views

Scammers, profiteers, and shady sites? It must be tax season

US tax season is upon us, a time of the year when a special kind of vermin comes crawling out of the woodwork: tax scammers! Not that their goals are any different from any other scammers. They want your hard-earned dollars in their pockets. Most of the tax-related attacks follow a few tried and...

0.5AI score
Exploits0
Krebs on Security
Krebs on Security
added 2019/07/08 5:27 p.m.88 views

Who’s Behind the GandCrab Ransomware?

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. What follow...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/10/31 3:38 p.m.479 views

Kraken Ransomware Upgrades Distribution with RaaS Model

The Kraken ransomware author has released a second version of the malicious code, along with a unique affiliate program on the Dark Web. According to research into Kraken v.2 the new version is being promoted in a ransomware-as-a-service RaaS model to underground forum customers, via a video...

0.8AI score
Exploits0References2
Malwarebytes
Malwarebytes
added 2018/09/07 5:8 p.m.62 views

Mac App Store apps are stealing user data

There is a concerning trend lately in the Mac App Store. Several security researchers have independently found different apps that are collecting sensitive user data and uploading it to servers controlled by the developer. This is referred to as exfiltrating the data. Some of this data is actuall...

Exploits0
ThreatPost
ThreatPost
added 2018/05/10 8:23 p.m.11 views

GandCrab Ransomware Found Hiding on Legitimate Websites

The GandCrab ransomware continues to virulently spread and adapt to shifting cyber-conditions, most recently crawling back into relevance on the back of several large-scale spam campaigns. What’s interesting is that GandCrab payload was found hiding on legitimate but compromised websites. These,...

0.5AI score
Exploits0References3
Trellix
Trellix
added 2017/12/20 12:0 a.m.15 views

McAfee Labs Advanced Threat Research Aids Arrest of Suspected Cybercrime Gang Linked to Top Malware CTB Locker

ARCHIVED STORY McAfee Labs Advanced Threat Research Aids Arrest of Suspected Cybercrime Gang Linked to Top Malware CTB Locker By Trellix · December 20, 2017 In our recent research, we interviewed the actors behind ransomware campaigns. One of the interesting findings was cybercriminals seemed to...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2017/08/15 2:58 p.m.17 views

Seven More Chrome Extensions Compromised

The number of compromised Chrome browser extensions is growing beyond the initial Aug. 1 hijacking of the OCR add-on called Copyfish. Added to list are seven additional legitimate Chrome Extensions that attackers took over and used to manipulate internet traffic and web-based ads, according to...

0.4AI score
Exploits0References4
Malwarebytes
Malwarebytes
added 2017/07/14 4:29 p.m.225 views

Keeping up with the Petyas: Demystifying the malware family

Last June 27, there was a huge outbreak of a Petya-esque malware with WannaCry-style infector in the Ukraine. Since there is still confusion about how exactly this malware is linked to the original Petya, we have prepared this small guide on the background of the Petya family. The origin of Petya...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2015/06/04 5:5 p.m.9 views

Adware-Laden Skype Botnet Disrupted

Skype, Microsoft’s now ubiquitous video/messenger program, has long been a go-to destination for attackers looking to peddle their malware. The latest campaign to leverage the software – a botnet circulating adware, composed entirely of Skype users – was recently disrupted by researchers. Ronnie...

2AI score
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Shopping Cart Script with Affiliate Program SQL Injection

No description provided by source. Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Shopping Cart Script with Affiliate Program SQL Injection Vendor url:http://www.yourfreeworld.com Version:n/a Price:399$ Published: 2010-06-19 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue,...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2013/01/15 7:38 p.m.13 views

Virut and Waledac Botnets Spamming from Shared Machines

In an analysis of Virut botnet samples, Symantec researchers observed the malware downloading Waledac variants, suggesting that the gangs responsible for each botnet may be cooperating with one another through some sort of affiliate program, or, at the very least, that the two threats coexist and...

1.7AI score
Exploits0References5
ThreatPost
ThreatPost
added 2012/12/12 3:50 p.m.7 views

SMS Extortion Trojan Targeting Apple Machines

In yet another blow to the tenuous false sense of security among Apple users, the Russian antivirus firm Dr. Web has uncovered what it claims is a first-of-its-kind fake installer Trojan targeting Mac machines and extorting their users with SMS fraud. Trojan.SMSSend.3666 is the Mac variant within...

1AI score
Exploits0References5
Rows per page
Query Builder