Category: INFOSEC

Turla renews its arsenal with Topinambour

2019 has seen the Turla actor actively renew its arsenal. Its developers are still using a familiar coding style, but they’re creating new tools. Here we’ll tell you about several of them, namely “Topinambour” and its related modules. https://securelist.com/turla-renews-its-arsenal-with-topinambour/91687/

Is ‘REvil’ the New GandCrab Ransomware?

The cybercriminals behind the GandCrab ransomware-as-a-service (RaaS) offering recently announced they were closing up shop and retiring after having allegedly earned more than $2 billion in extortion payments from victims. But a growing body of evidence suggests the GandCrab team [ … ]

Facebook Charged $5 Billion For Privacy Breach

The Wall Street Journal and other media reported late Friday that Facebook will be charged with a $5 billion fine for privacy lapses in conjunction with the company’s 2018 Cambridge Analytica scandal. The fine represents the largest ever imposed by the FTC against [ … ]

La Porte County Pays $130,000 Ransom To Ryuk Ransomware

According to this link, https://www.bleepingcomputer.com/news/security/la-porte-county-pays-130-000-ransom-to-ryuk-ransomware/, La Porte County, Indiana, has paid $130,000 to recover data on computer systems impacted by ransomware.  The attack occurred on Saturday, July 6 and was spotted before it propagated to all the computer on the network  Despite [ … ]

Forked Version of BitPaymer Ransomware Emerges

Members of the cybercriminal group behind the infamous Dridex Trojan have split from the gang and released a forked version of the BitPaymer ransomware, CrowdStrike reports.  read more http://feedproxy.google.com/~r/Securityweek/~3/KIWENHs5xFE/forked-version-bitpaymer-ransomware-emerges

SWEED: Exposing years of Agent Tesla campaigns

By Edmund Brumaghin and other Cisco Talos researchers.Executive summaryCisco Talos recently identified a large number of ongoing malware distribution campaigns linked to a threat actor we’re calling “SWEED,” including such notable malware as Formbook, Lokibot and Agent Tesla. Based on [ … ]