As you can see, our labs team is still seeing Locky is being distributed in a lot of malspam campaigns. This is just a brief variant update. When infected with the ransomware, system files are now encrypted with extension .Ykcol (locky backwards) OTX updated: https://otx.alienvault.com/pulse/598b06a8104ee74f496a4691/ Example of .Ykcol variant being distributed by Necurs botnet:...
Read More
Website Ransomware Trending Now
Vertek’s security operations team has noticed website ransomware is starting to pick up steam with recent variants of AwesomeWare,...
Read More
Locky Now Pushing .Lukitus Variant – IoCs and OTX
Locky is being distributed at mass scale via phishing and spam email attacks by two major botnets; Necurs and...
Read MoreLocky DIABLO6 Ransomware Campaign Launched – IoCs and OTX
Locky IoCs extracted by our security operations center. Public Pulse | TLP: White | encrypts with extension .DIABLO6 OTX...
Read MoreGlobe Imposter Ransomware – IoCs and OTX
Glob Imposter IoCs extracted by our security operations center. Public Pulse | TLP: White | Encrypt filesystem with extension...
Read MoreAutomated PhishTank IoCs and OTX feed – Verified/Online Banking Phishing URLs
This is an automated process that is updated hourly by the Vertek MTI Labs Team. We pull all active/online...
Read MoreAutomated PhishTank IoCs and OTX feed – Verified/Online GoogleDocs Phishing URLs
This is an automated process that is updated hourly by the Vertek MTI Labs Team. We pull all active/online...
Read More