ThreatSTOP blocks new Microsoft Ransomware
This morning I saw various reports of a new type of Ransomware, masquerading as a fake Microsoft warning that your copy of windows is invalid. I had a quick check and was unsurprised to note that...
View ArticleBlocking Cryptolocker Ransomware
ThreatSTOP and DNS Firewall block Cryptolocker Stop extortion by cybercriminals using IP and Domain Name reputation. ThreatSTOP has started blocking a new variety of malware called “cryptolocker” for...
View ArticleLocky, Not to be Confused with Lucky
Locky is a new ransomware that encrypts a victim’s data using AES encryption and then demands .5 bitcoins for the decryption of that data. The malware is currently being distributed via email that...
View ArticleFBI: Ransomware on the Rise
According to the Wall Street Journal, the FBI is once again warning that ransomware is on the rise. The FBI made a similar statement in January 2015. This latest FBI message says it will be on the rise...
View ArticleNew: TeslaCrypt Ransomware
TeslaCrypt is a file-encrypting ransomware program that was first released toward the end of February 2015. The ransomware targets all versions of Windows including Windows XP, Windows Vista, Windows...
View ArticleNew: Chuingam/Xwin Ransomware
Chuingam, also called Xwin, is a new ransomware that is distributed via email containing a file attachment about “payment transfers.” The file has a .cmd extension and is actually just an executable,...
View ArticleVipasana Ransomware Encrypts Offline
Vipassana is a form of meditation, not to be confused with Vipasana–a new Russian ransomware that emerged in December 2015. This ransomware is unique in that it encrypts offline. While most known...
View ArticleThe Many Heads of Ransomware: HydraCrypt New to the Scene
HydraCrypt is a new ransomware recently discovered by McAfee. Like some previous ransomware variants, HydraCrypt is distributed using the Angler exploit kit. HydraCrypt encrypts a victim’s files and...
View ArticlePoseidon Has Taken Up Spearfishing
Poseidon is a Portuguese-speaking targeted attack group that has been considered active since at least 2005, while the very first sample found by Kaspersky points to 2001. Poseidon’s specialty is...
View ArticleTorrentLocker Ransomware Still Going Strong
TorrentLocker is a family of file-encrypting ransomware first observed in late 2014, that is almost exclusively distributed through spam email campaigns. The ransomware is noteworthy for targeting...
View ArticleThreatSTOP Critical Ransomware
Those of you who follow cybersecurity news in general and our blog in particular have likely noticed a rise in the number of ransomware-related events. Over the last few weeks alone we seen a...
View ArticleLocky Ransomware Domains – Followup Analysis Uncovers 130 New Indicators
Recently, there has been a lot of buzz over a flourishing ransomware that goes by the name of Locky, which encrypts a victim’s data using a strong RSA-2048+AES-128 encryption and then demands between...
View Article
More Pages to Explore .....