My account


Delaware, USA – January 9, 2019 – One of the threat actors behind the malvertising campaign distributes Vidar infostealer to collect credentials and install GandCrab ransomware as a secondary payload. Experts from Malwarebytes discovered this threat during the investigation of a massive malvertising campaign which redirects its victims to Fallout and GrandSoft exploit kit landing […]

Delaware, USA – January 8, 2019 – An updated version of the NRSMiner coinminer threatens organizations in Asia. Researchers from F-Secure spotted a new wave of malware attacks started in mid-November last year when adversaries released the newest version of the cryptocurrency miner. NRSMiner is a worm-like malware that uses the EthernalBlue exploit for spreading […]

Delaware, USA – January 4, 2019 – A recently published research by Cybaze-Yoroi ZLab experts informs about details of Roma225 campaign that targeted the Italian automotive sector. Cyberespionage malware intruded into infrastructure through phishing email making victims believe its a legitimate PowerPoint Presentation from the senior partner. Their bad luck was that the .ppa file […]

Ryuk Ransomware is Back Again


Delaware, USA – January 3, 2019 – The last days of the year 2018 were extremely troubled for one of the biggest US’ media group. Ryuk ransomware seriously disrupted crucial production and printing processes, so the Sunday morning was clouded for the readers of printed newspapers. A Tribune Publishing spokesperson said that websites and mobile […]

Delaware, USA – January 2, 2019 – On the eve of the New Year, the Dark Overlord group, infamous for their attacks on financial and media companies, posted on Pastebin an announcement of readiness to disclose stolen data related to the September 11 attacks. Cybercriminals shared via torrent file 10Gb of encrypted data and demanded […]

Delaware, USA – December 28, 2018 – Adversaries have found a new way to infect servers through unsecured Intelligent Platform Management Interface cards. JungleSec ransomware appeared almost two months ago, cybercriminals use it to encrypt files on systems running Linux, MacOS and Windows, and Mac demanding a ransom of 0.3 bitcoin, but many users who […]

Delaware, USA – December 27, 2018 – When the cybersecurity community is studying reports and making plans for the upcoming year, the criminals are still improving their weapons. The recently published investigation reveals the details of the malware attack which used a top-level domain registered by cybercriminals as a command and control server. Bulk mailing […]

Delaware, USA – December 21, 2018 – New exploit allows reading data from specific locations with system level access. SandboxEscaper publishes the third exploit in the last few months, previous exploits were quickly weaponized by cybercriminals and actively used even after Microsoft released security updates. The first exploit led to a local privilege escalation enabling […]

Delaware, USA – December 20, 2018 – The investigation of recent attacks on the oil and gas industry in the Middle East revealed that the Iranian group APT33 is behind this operation. The attackers have been preparing for the campaign for at least several months, collecting credentials of companies employees using phishing sites with job […]

Delaware, USA – December 19, 2018 – This month, researchers from Palo Alto discovered a new version of Zebrocy malware written using the Go programming language. It was used in a cyber-espionage campaign, which experts associate with attacks of the Fancy Bear group (aka APT28) targeted government organizations in North America and Europe. The first […]