Security Boulevard

Emulating the Mutative BlackByte Ransomware

AttackIQ has released a new attack graph that emulates the behaviors exhibited by BlackByte ransomware, a strain operated ...
Bleeping Computer

Locky Ransomware Switches to the Asasin Extension via Broken Spam Campaigns

Today a new Locky Ransomware variant was released that now uses the .asasin extension for encrypted files. Personally, I thought the previous extension, ykcol, was more clever, while this one ...
Bleeping Computer

Locky Ransomware Switches to the Ykcol Extension for Encrypted Files

Today a new Locky Ransomware variant was discovered by security researcher Derek Knight and then quickly followed by Stormshield malware analyst coldshell that switches to the .ykcol extension for ...

New Research from Index Engines™ Shows Ransomware Continues Shift Towards Polymorphism, Shadow Encryption, and Wiper-Style Attacks

Index Engines, the leader in cyber resilience, today shared the latest ransomware trends from its CyberSense® Research Lab, which reveals threat actors continue to advance their approaches with more ...
Dark Reading

Attacker Mistake Botches Cyborg Ransomware Campaign

These are the two subject lines of fraudulent emails disguised to appear as Windows Update notifications while containing malicious attachments to infect targets with Cyborg ransomware. While the ...

Windows shortcut files targeted by ransomware gang Global Group

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...