Ransomware

ESET releases Crysis ransomware decryptor tool

ESET releases Crysis ransomware decryptor tool

By

ESET security researchers have created and released a free decryption tool to help combat Crysis ransomware.

San Francisco public transport ticket system shut down by ransomware

San Francisco public transport ticket system shut down by ransomware

By

San Francisco's Municipal Transportation Agency was caught with a HDDCryptor Ransomware infection over the weekend, leaving the agency unable to sell tickets or charge customers for transport, unless they pay the hackers demands of 100 Bitcoin.

Stampado ransomare: Cheap, but easily decrypted

Stampado ransomare: Cheap, but easily decrypted

By

Stampado ransomware was first spotted in the wild in July, but has spawned new variants capable of self propagating and re-encrypting files previously locked up by other ransomware, and all for a rock bottom price on the dark web.

TeleCrypt ransomware rapidly defanged thanks to weak encryption

TeleCrypt ransomware rapidly defanged thanks to weak encryption

By

Security researchers at Malwarebytes have worked out how to extract the encryption key from TeleCrypt ransomware and build a tool for recovering scrambled files.

New ransomware variant extorts your reputation rather than money

New ransomware variant extorts your reputation rather than money

By

Researchers at security firm ProofPoint have discovered a new variant of malware which triggers it's ransom screen once it finds indecent materials.

CrySiS ransomware decryptor keys posted

CrySiS ransomware decryptor keys posted

By

The decryptor keys for the CrySiS ransomware were posted in a Bleeping Computer forum early on 14 November, possibly by one of the ransomware's developers.

ICYMI: Cyber-Sec challenge; Tesco hack, DDoS hits Finns; US election hack?; NHS Trust downed

ICYMI: Cyber-Sec challenge; Tesco hack, DDoS hits Finns; US election hack?; NHS Trust downed

By

In this week's In Case You Missed It we look at: Youngest Cyber-Sec winner; Tesco bank hacked; DDoS hits Finns heating; US election vulnerability; NHS Trust closed by malware

Northern Lincolnshire NHS up and running again after "virus" threat

Northern Lincolnshire NHS up and running again after "virus" threat

By

Ransomware most likely culprit for network infection that closed down three hospitals in North Lincolnshire and affected several other affiliated institutions.

Blackhat EU: Vicious circles of ransomware

Blackhat EU: Vicious circles of ransomware

By

Federico Maggi told audience members at Blackhat that ransomware presents a new intervention in cyber-criminality

Why security vendors should put their money where their mouth is

Why security vendors should put their money where their mouth is

Jeremiah Grossman says it's not uncommon to see security vendors claim they're the best vendor to protect you from cyber-threats. These claims are all well and good, but where is the evidence to back these figures up?

Locky ransomware distributors reduced to potty talk

Locky ransomware distributors reduced to potty talk

By

After a two week break that saw few Locky ransomware attacks, the Cisco Talos research team discovered a new variety that sports not only a scatologically named extension for the encrypted files but another reference that insults Linux.

Why ransomware is a paper tiger

Why ransomware is a paper tiger

Nic Scott discusses what IT decision makers can do to make their organisation immune from ransomware so they too can laugh at the scammers trying to take company files for a ride.

Python ransomware uses a unique key for each file that is encrypted

Python ransomware uses a unique key for each file that is encrypted

By

A new ransomware variant written in Python and named CryPy has been uncovered by an Avast security researcher that while dangerous is also littered with flaws that make it less effective.

European ransomware initiative gains 13 new member countries

European ransomware initiative gains 13 new member countries

By

The fight against ransomware is going global as an initiative by the Dutch police and Europol begins to attract support from Europe and the rest of the world.

Researchers spot uptick in phishing cyber-attacks leveraging WSF files

By

Symantec researchers noted an uptick in phishing email attacks using malicious WSF attachments to infect users with ransomware.

Cerber 4.0 spotted in EKs just a month after 3.0 release

By

Trend Micro researchers have spotted several exploit kits delivering Cerber 4.0 ransomware just a month after the release of version 3.

NHS attacked by ransomware 'dozens' of times

NHS attacked by ransomware 'dozens' of times

By

An FOI disclosure from the NHS has shown nearly 30 NHS trusts to be the victims of ransomware attacks in the past 12 months.

Ransomware became main threat to Android users in 1H 2016

By

The Android SLocker ransomware family accounts for 16 percent of mobile malware in the UK.

Shades of Locky, MarsJoke in new Hades ransomware

By

Another new ransomware type called Hades, uncovered this week by Proofpoint, that seems to pull in features from several older malware types.

Ransomware's busy week with new varieties and updates being debuted

Ransomware's busy week with new varieties and updates being debuted

By

With the massive Yahoo! data breach grabbing the cyber-security headlines of late, it might be easy to forget criminals are still busy pushing ransomware with two new varieties being recently introduced and a one older type being revamped.

Android. Lockerscreen using pseudo-random passcodes

By

The Android.Lockerscreen ransomware is now using pseudorandom numbers and other tactics to prevent victims from unlocking devices without paying.

Voldemort ransomware rears its ugly head

By

Death Eaters, or perhaps just bad guys, with a taste for the Harry Potters franchise have unleashed a new strain of ransomware they've dubbed Voldemort, named for the villain of the book and movie series.

Locky developers upgrade ransomware's ability to perform offline encryption

By

A new analysis of Locky ransomware configurations by IT security firm Avira has revealed improved offline capabilities that enhance its ability to automatically encrypt victims' files, without interaction with a command-and-control server.

Crysis ransomware now attacking businesses in Australia and New Zealand

Crysis ransomware now attacking businesses in Australia and New Zealand

By

Australian and New Zealand businesses are being hit with a ransomware campaign.

500+ vulns reported to the National Vulnerability Database in 1H 2016

By

Vulnerabilities are on the rise, with 516 reported to the National Vulnerability Database in the first half of 2016 compared to only 403 total vulnerabilities were reported in 2015.

Ransomware up 3000% since first recorded, now targeting hospitals

Ransomware up 3000% since first recorded, now targeting hospitals

By

In its September 2016 Threat Report, Intel Security describes how ransomware attacks are up 3000 percent since records began in 2012, and why attackers are now turning to the healthcare industry.

New RAA ransomware variant performs own encryption, attacks businesses

New RAA ransomware variant performs own encryption, attacks businesses

By

The ransomware RAA, which incorporates the information-stealing trojan Pony, has evolved to more effectively target companies, encrypting victims' files and stealing their data, most likely to infect their business contacts via spear-phishing.

New research shows ransomware victims are paying up

New research shows ransomware victims are paying up

By

New research from security company Trend Micro shows ransomware victims are paying up, despite remaining defiant to fight it as much as possible.

SC Webcasts UK

Sign up to our newsletters

FOLLOW US