Entropy ransomware linked to Evil Corp’s Dridex malware
Analysis of the recently-emerged Entropy ransomware reveals code-level similarities with the general purpose Dridex malware that started as a banking…
New Xenomorph Android malware targets customers of 56 banks
A new malware called Xenomorph distributed through Google Play Store has infected more than 50,000 Android devices to steal banking information. [...]
Medusa malware ramps up Android SMS phishing attacks
The Medusa Android banking Trojan is seeing increased infection rates as it targets more geographic regions to steal online credentials…
Trickbot Injections Get Harder to Detect & Analyze
The authors of the infamous malware family have added measures for better protecting malicious code injections against inspection and research.
The Week in Ransomware – January 21st 2022 – Arrests, Wipers, and More
It has been quite a busy week with ransomware, with law enforcement making arrests, data-wiping attacks, and the return of…
FBI links Diavol ransomware to the TrickBot cybercrime group
The FBI has formally linked the Diavol ransomware operation to the TrickBot Group, the malware developers behind the notorious TrickBot…
FluBot malware now targets Europe posing as Flash Player app
The widely distributed FluBot malware continues to evolve, with new campaigns distributing the malware as Flash Player and the developers…
Android banking trojan spreads via fake Google Play Store page
An Android banking trojan targeting Itaú Unibanco, a large financial services provider in Brazil with 55 million customers globally, is…
Log4j vulnerability now used to install Dridex banking malware
Threat actors now exploit the critical Apache Log4j vulnerability named Log4Shell to infect vulnerable devices with the notorious Dridex banking…
Emotet Is Back and More Dangerous Than Before
Volume of traffic associated with the malware is now back at 50% of the volume before law enforcement took the…