GandCrab, a new ransomware-as-a-service emerges from Russian crime underground

Haythem Elmir

Experts at cyber security firm LMNTRIX have discovered a new ransomware-as-a-service dubbed GandCrab. advertised in Russian hacking community on the dark web. The GandCrab was advertised in Russian hacking community, researchers noticed that authors leverage the RIG and GrandSoft exploit kits to distribute the malware. “Over the last three days LMNTRIX Labs has been tracking an influx of GandCrab ransomware. The […]

Fake HMRC REF: Notification of payment collection malspam delivers Smoke loader which downloads Trickbot Banking Trojan

Haythem Elmir

This example is an email containing the subject of “REF: Notification of payment collection” pretending to come from HMRC but actually coming from a look-a-like or typo-squatted domain < noreply@notificationsemailgovuk033.top >  with a malicious word doc attachment  is today’s latest spoof of a well-known company, bank or public authority delivering Trickbot banking Trojan. The initial […]

We May Soon See Malware Leveraging the Meltdown and Spectre Vulnerabilities

Haythem Elmir

Security researchers are seeing an ever-increasing number of malware samples that are experimenting with the Meltdown and Spectre vulnerabilities. According to experts at AV-TEST, Fortinet, and Minerva Labs, several individuals are experimenting with publicly released proof-of-concept (PoC) code for the Meltdown (CVE-2017-5754) and Spectre (CVE-2017-5715, CVE-2017-5753) vulnerabilities. esearchers from AV-TEST […]