US Government Site Was Hosting Ransomware
US .gov site was hosting a .zip archive containing JavaScript that with obfuscated PowerShell, downloading a gif file which is a Cerber executable.
Entries by
New Locky Variant Strikes Again
Locky is notorious for its effectiveness and profitability. In the last two years, Locky has extorted almost $7.8 million from victims, according to a recent study by Google.
Revamped Nukebot Malware Changes Targets, Adds Functions
The revamped Nukebot banking trojan has shifted from stealing bankcard data to quietly downloading malicious payloads for web-injects, cryptocurrency mining, and taking screenshots of systems.
Defray Ransomware Seen Targeting Education, Healthcare Industry
One purported to be from a UK hospital Director of Information Management and Technology, the other appeared to come from the SEA LIFE aquarium, in Birmingham.
Android Spyware Linked to Chinese SDK Forces Google to Boot 500 Apps
The SDK, called Igexin, was developed by a Chinese company and may have been used to install malware that could, among other things, exfiltrate logs from devices.
Registration now open for UK Public Sector DNS service
Follow these simple steps so your organisation can use the new UK Public…
Protective DNS service for the public sector is now live
Back in November, the Chancellor launched the National Cyber Security Strategy. In it, we…
Maersk Shipping Reports $300M Loss Stemming from NotPetya Attack
Maersk expects losses up to $300m In Q2. They said the loss was due to “significant business interruption” as Maersk had to shutter critical systems infected with malware.
The long and the short of it
We know that some people are understandably wary about clicking on links when…
Google Removes Chrome Extension Used in Banking Fraud
Attackers did their homework on their targets, learning via social networks, whom inside an organisation was closely involved in making financial transactions.