A Microsoft Word zero-day vulnerability is being used to spread the Dridex banking Trojan in attacks that have bypassed mitigation efforts.
Tag Archives: Dridex
Where Have All The Exploit Kits Gone?
For a long time, exploit kits were the most prolific malware distribution vehicle available to attackers. Where did they go and what’s replaced them?
Dridex Trojan Gets A Major ‘AtomBombing’ Update
Dridex has undergone a massive update and now sports a new injection method for evading detection based on the technique known as AtomBombing.
Cerber Ransomware On The Rise, Fueled By Dridex Botnets
Cerber ransomware leverages Dridex spambot network in massive new crypto-offensive targeting U.S. inboxes.
“I’m with Stupid†Locky network gets hacked and dissed
A few months ago, we reported on a white hack against Dridex where the malicious payload was removed and an Avira antivirus downloader added.
The post “I’m with Stupid” Locky network gets hacked and dissed appeared first on Avira Blog.
Banking Trojans Nymaim, Gozi Merge to Steal $4M
“Double-headed beast” Trojan, GozNym, drains $4 million from banks in past two weeks.
Rokku, the “professional†ransomware
In our blog, we’ve already shown you several different types of interesting ransomware, each with their own peculiarities. Maktub for example, has a streamlined, clean and easy“payment-page” that perfectly explains how one can get the encrypted files back.
The post Rokku, the “professional” ransomware appeared first on Avira Blog.
Will Locky ransomware and the Dridex botnet take an Easter vacation?
Locky ransomware may take an Easter Break, at least in terms of phishing email distribution. And it’s all about the bad guys finding the target audience, not their love of Easter Eggs.
The post Will Locky ransomware and the Dridex botnet take an Easter vacation? appeared first on Avira Blog.
Dridex starts hardening their settings files
RSA is over and it’s back to work for Dridex. Botnet operators have hardened the encryption on their settings files, a move that complicates detecting the next steps of this banking malware.
The post Dridex starts hardening their settings files appeared first on Avira Blog.
Locky in the Cloud with Ransomware
The new Locky ransomware is on a roll, with cybercriminals quickly adapting malware to exploit user vulnerabilities. But they still haven’t outsmarted the Avira Protection Cloud.
The post Locky in the Cloud with Ransomware appeared first on Avira Blog.