Weekly Executive Summary for Week September 01, 2017

What is it? Ransomware What has it been dubbed? Defray What does it do? The ransomware that has been dubbed Defray after it’s C2(Command and Control) servers hostname ‘defrayable-listings[.]000webhostapp[.]com’, encrypts a hardcoded list of file types (i.e., csv, pdf, doc, ppt, etc). Defray has been Continue Reading

NotPetya Ransomware Disrupts Merck Vaccine Production

Merck, a global leader in drug and vaccine production, may be unable to produce hepatitis B vaccines until 2018 because of worldwide production disruptions resulting from the NotPetya ransomware attacks in June. In late June 2017, Merck, one of the “big four” of the world’s Continue Reading

Weekly Executive Summary for Week June 23, 2017

What is it? Linux Ransomware What has it been dubbed? Erebus ransomware What does it do? Infected 153 Linux servers and over 3,400 business websites in South Korean web hosting company, Nayana. Distributed through malvertisements, or malicious advertisements. The attackers requested a whopping $1.62 million Continue Reading

Weekly Executive Summary Week Ending June, 02 2017

What is it? Crypto-Ransomware | Trojan What has it been dubbed? Uiwix What does it do? A ransomware variant of the infamous wannacry malware. Exploits the same vulnerability in SMBv1 and SMBv2 that was used in WannaCry ransomware(Microsoft MS17-010). This particular variant of malware does Continue Reading

Weekly Executive Summary Week Ending May, 26 2017

What is it? Crypto-Ransomware What has it been dubbed? WannaCry | WannaCrypt | WCry | WanaCrypt0r What does it do? WannaCry began spreading on May 12 (according to experts at FireEye). The ransomware exploits a Windows SMB vulnerability. It has the ability to distribute the malware Continue Reading

Weekly Executive Summary Week Ending February, 24 2017

What is it? Mac OS Ransomware What is it dubbed as? Patcher What does it do? Crypto-ransomware has been observed normally targeting Windows machine, though a new ransomware campaign has been found targeting Mac computers. The new ransomware has been written in Swift(which is a Continue Reading