Malware Archives - Securezoo

ViperSoftX campaign steals cryptocurrency and targets password managers

Cybersecurity Attacks, Malware, Password Management / By Frank Crast / May 1, 2023 / C&C, Command and Control, Cryptocurrency, passwords, ViperSoftX

Security experts have discovered a new version of ViperSoftX, a malware that steals cryptocurrency and targets password managers, such as KeePass and 1Password.

LockBit 3.0 Ransomware: An evolving threat that challenges network defenses and mitigations

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / March 21, 2023 / ALPHV, BlackCat, BlackMatter, LockBit, LockBit Black, malware, RaaS, Ransomware

The FBI, CISA, and MS-ISAC have released a joint cybersecurity advisory regarding LockBit 3.0 ransomware as identified through FBI investigations as recently as this month.

Royal Ransomware uses a unique “partial encryption approach” to evade detection

Cybersecurity Attacks, Malware, Phishing, Ransomware / By Frank Crast / March 3, 2023 / CISA, Cobalt Strike, encryption, FBI, Ransomware, RMM, Royal, SysInternals, Zeon

CISA and FBI have published a joint cybersecurity alert on Royal ransomware used in recent cyberattacks as recently as January 2023. The ransomware uses a unique “partial encryption approach” to evade detection.

Threat actors abuse Windows debugger tool to disguise PlugX trojan attacks

Cybersecurity Attacks, Malware / By Frank Crast / February 27, 2023 / debugger, malware, PlugX, RAT, Windows, x32dbg.exe

Researchers have discovered threat actors abusing legitimate open-source debugger tool for Windows to disguise PlugX trojan attacks.

Clop: New Linux ransomware variant threat

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / February 7, 2023 / Cl0p, Clop, Linux, Ransomware

Researchers from SentinelLabs have spotted the first Linux variant of Cl0p (aka “Clop”) ransomware, targeting Linux systems on December 26, 2022.

Microsoft: RaaS attacks continue to evolve and expand

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / February 2, 2023 / Batloader, BlackCat, LockBit, Microsoft, RaaS, Ransomware

Microsoft has been tracking over 100 threat actors using 50 unique active ransomware families in attacks around the globe.

Vice Society ransomware gang targets manufacturing firms

Cybersecurity Articles, Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / February 1, 2023 / FiveHands, Hello Kitty, PrintNightmare, Ransomware, Vice Society, Zeppelin

Vice Society ransomware gang has been targeting manufacturing firms in Brazil, Argentina, Switzerland, and Israel, with their own custom-built ransomware.

Microsoft report highlights Mac ransomware threats and techniques

Cybersecurity Articles, Cybersecurity Attacks, Malware / By Frank Crast / January 7, 2023 / Defender, encryption, EvilQuest, FileCoder, KeRanger, macOS, MacRansom, malware, Microsoft, OSX, Ransomware

Microsoft has released new details on Mac ransomware threats, techniques and provided guidance on how to protect networks and systems from ransomware attacks.

SpyNote malware targets Android devices to steal account credentials

Cybersecurity Attacks, Malware, Mobile Security / By Frank Crast / January 6, 2023 / Android, malware, SpyNote, spyware, ThreatFabric

In late 2022, security researchers have discovered a spike in volume of SpyNote malware samples used to steal account credentials.

The Guardian closes offices after ransomware attack last month

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / January 4, 2023 / Cyberattack, malware, Ransomware, The Guardian

Leading British newspaper The Guardian has temporarily closed offices after a ransomware attack reported last month.