Norway


- 1519565080 bpthumb - Gandcrab Ransomware Walks its Way onto Compromised Sites

This blog post authored by Nick Biasini with contributions from Nick Lister and Christopher Marczewski.

Despite the recent decline in the prevalence of in the threat landscape, Cisco Talos has been monitoring the now widely distributed called Gandcrab. Gandcrab uses both traditional spam campaigns, as well as multiple exploit kits, Rig and Grandsoft. While we’ve seen cryptocurrency miners overtake as the most popular malware on the threat landscape, Gandcrab is proof that can still strike at any time.

While investigating a recent spam campaign Talos found a series of websites that were being used to deliver Gandcrab. This malware is the latest in a long line of examples of why stopping malware distribution is a problem, and shows why securing websites is both an arduous and necessary task. As a clear example of how challenging resolving these issues can be, one of the — despite being shut down briefly — was seen serving Gandcrab not once, but twice, over a few days.

Read More >>

Tags:





Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here