Kaseya Was Working on Patches Before Ransomware Attack govinfosecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from govinfosecurity.com Daily Mail and Mail on Sunday newspapers.
Apr 14, 2021
The IcedID banking trojan has entered Check Point Research’s Global Threat Index for the first time, taking second place, while the established Dridex trojan was the most prevalent malware during March, up from seventh in February.
First seen in 2017, IcedID has been spreading rapidly in March via several spam campaigns, affecting 11% of organisations globally.
One widespread campaign used a Covid-19 theme to entice new victims into opening malicious email attachments; the majority of these attachments are Microsoft Word documents with a malicious macro used to insert an installer for IcedID.
Once installed, the trojan then attempts to steal account details, payment credentials, and other sensitive information from users’ PCs. IcedID also uses other malware to proliferate and has been used as the initial infection stage in ransomware operations.
IcedID Banking Trojan Wins second place in Check Point research sourcesecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from sourcesecurity.com Daily Mail and Mail on Sunday newspapers.
Feb 15, 2021
Check Point Research’s latest Global Threat Index for January 2021 has revealed the Emotet trojan has remained in first place in the top malware list for the second month running, impacting 6% of organisations globally, despite an international police operation which took control of the botnet on 27 January.
The police takedown caused a 14% decrease in the number of organizations that were impacted by Emotet activity, and law enforcement agencies plan to mass-uninstall Emotet from infected hosts on 25 April. Even so, Emotet maintained the top position in the Global Threat Index, highlighting the vast global impact this botnet has had. Emotet’s malicious spam campaign uses different delivery techniques to spread Emotet, including embedded links, document attachments, or password-protected Zip files.
Dec 28, 2020
There has been a new surge in infections by the well-known Phorpiex botnet which has made it the month’s most prevalent malware, impacting 4% of organisations globally.
Phorpiex was last seen in the Threat Index’s top 10 in June this year, according to Check Point Research’s latest Global Threat Index for November 2020.
The Phorpiex botnet was first reported in 2010, and at its peak controlled more than a million infected hosts. Known for distributing other malware families via spam as well as fueling large-scale “sextortion” spam campaigns and cryptomining, Phorpiex has again been distributing the Avaddon ransomware, as Check Point researchers originally reported earlier this year. Avaddon is a relatively new Ransomware-as-a-Service (RaaS) variant, and its operators have again been recruiting affiliates to distribute the ransomware for a cut of the profits. Avaddon has been distributed via JS and Excel files as part of malspam campaigns and is able to en