Select Page

SyncCrypt Ransomware

SlashNext has observed a major increase in malicious spam (malspam), email based attacks that distribute ransomware through email attachments. In fact, a new ransomware was discovered just last week distributing spam attachments containing Windows Script File (WSF)....

JS based PHP Ransomware

Malicious spam campaigns are among hackers’ favorite delivery channels for spreading malware to their targets. Recently, we have observed a malspam campaign delivering ransomware by spam email attachments containing a “.js” file named “UPS-Receipt-01878098.doc.js”. On...

Malspam Pushing BTCWare (OCEAN VARIANT) Ransomware

We recently observed a Malicious Spam campaign that pushes ransomware targeting Windows hosts. The adversary sends a zip archive in email without text in the message body. This zip archive is double coated – a zip archive within a zip archive. The second zip...

Kirk Ransomware Based on Star Trek Theme

Kirk is a newly discovered ransomeware. It is similar in function to other ransomeware but its authors (presumably fans of Gene Rodenberry’s iconic TV series) have borrowed character names for the encryption and decryption components. Two notable items related to Kirk...

Jigsaw Ransomware

Jigsaw is the latest in a spate of Ransomware that encrypts files and offers to sell the victim a decryption key to get their data back.  Adding a new twist, Jigsaw threatens to delete one file every hour if the ransom is not paid in a timely manner. Jigsaw is capable...

PowerWare – A malware built on lies

A couple of weeks ago the folks at Carbon Black discovered a new Ransomware strain that they dubbed “PowerWare”. What makes PowerWare interesting is its ability to encrypt files using the Windows PowerShell scripting language.  Unlike other Ransomware, Powerware...