RobbinHood Ransomware Stops 181 Windows Services Before Encryption

Posted by & filed under Security Alerts.

According to source articles, RobbinHood ransomware has been discovered and it will stop 181 Windows services prior to the encryption taking place. It is thought that the ransomware might not be distributed through a typical spam campaign, but instead via other methods such as hacked remote desktop (RDP) services. Following is the ransom note created… Read more »

MegaCortex Ransomware Targeting Business Networks

Posted by & filed under Security Alerts.

A new ransomware has been discovered called MegaCortex that is targeting corporate networks and the workstations on them. Once a network is penetrated, the attackers infect the entire network by distributing the ransomware using Windows domain controllers. In a new report, Sophos has stated that they have seen customers in the United States, Italy, Canada, France, the… Read more »

Ransomware Campaign April 2019

Posted by & filed under Security Alerts.

The National CSIRT-CY would like to inform you of a Ransomware attack that is currently in progress worldwide. After the analysis of the National CSIRT-CY, the following IOC’s (Hashes) were found.   FileDetails Type PE32 executable (GUI) Intel 80386, for MS Windows FileName sql.exe Size 94720 bytes MD5 5a9eb8d21148bc8b54460d03f4f7c3b6 SHA1 e2bf54f632b98b3f77d15794bf1251d1cf4e2974 SHA256 e83d9e54f12139150e2ba6ed2f6b119dcc593ea7dc3137cef8942674bf69490b SHA512 7f208bb599d571758cf575ca998ec06f5a5efc79a7763cccc6e884c72b85fd106cc3f3d8adbb153fec14523a94d6b00e8b4c93036553cd7c8fb92d33def7559c

Anubis Android Trojan Spotted with Almost Functional Ransomware Module

Posted by & filed under Security Alerts.

An Android application which steals PayPal credentials, encrypts files from the device’s external storage, and locks the screen using a black screen was spotted in the Google Play Store by ESET malware researcher Lukas Stefanko. Behind the app’s malicious behavior is an Anubis Android banking Trojan malware payload, a well-known Trojan designed to steal banking credentials, provide its masters with a RAT… Read more »