A Malware Researcher’s Guide to Reversing Maze Ransomware

A Malware Researcher’s Guide to Reversing Maze Ransomware

At the end of May 2019, a new family of ransomware called Maze emerged into the gaping void left by the demise of the GandCrab ransomware. Unlike run-of-the-mill commercial ransomware, Maze authors ...
One Hacking Group Promises to Stop Attacking Medical Units Until COVID-19 Cools Down

One Hacking Group Promises to Stop Attacking Medical Units Until COVID-19 Cools Down

Perhaps they want to avoid provoking the white-hot rage of an already wounded public. Or maybe they’ve realized their victims can’t pay. Or, just possibly, some black hats do have a smidgen ...
Ransomware

New Treacherous Tricks of Ransomware Authors

Ransomware operators are giving their sketchy repertoire an overhaul. These attacks used to be about unauthorized data encryption and now they are adding data theft to the mix. As a result, not ...
Security Boulevard
Sodinokibi Hackers Now Use Stolen Data for Blackmail

Sodinokibi Hackers Now Use Stolen Data for Blackmail

Hackers using the Sodinokibi ransomware published stolen data to further extort their victims, marking a first for operations using this attack vector. Sodinokibi is usually identified in attacks against critical infrastructures, but ...
2020 Prediction: Ransomware to become more dangerous than ever

2020 Prediction: Ransomware to become more dangerous than ever

In November, cyber crooks told services company Allied Universal that they would make its files public if the company didn’t pay a ransom. Allied refused and the hackers stuck to their threat, ...
Maze

Maze Ransomware Exploiting Exploit Kits

Cybercrime has never been one to hem in tactics with ideology or rules. Rather, malware operators are known to use what works and then modify code to continue to work. By “work,” ...
Security Boulevard
Malspam Campaign Targeting Italian Users with Maze Ransomware

Malspam Campaign Targeting Italian Users with Maze Ransomware

Digital attackers are leveraging a new malspam campaign to target Italian users with samples of the Maze ransomware family. Security researcher JAMESWT observed the Maze ransomware campaign targeting users in Italy with ...