A Threat Intelligence Analyst on Vertek’s Cybersecurity team recently discovered a massive spam recipient list from a bad threat actor’s botnet after analyzing a malware sample that was distributed via email to one of our clients. To read more regarding Vertek’s discovery, please see: https://www.bleepingcomputer.com/news/security/trik-spam-botnet-leaks-43-million-email-addresses/ Following the discovery of this incident, the analyst worked with Troy Hunt at HIBP (https://haveibeenpwned.com) and about 10% (4M) of the addresses in the SPAM leak were new/not recorded......
Read More
Microsoft Patches IE Zero-Day Dubbed “Double Kill”
Threat Summary On May 8th 2018 , Microsoft released critical security updates to patch a Remote Code Execution (RCE)...
Read MoreMicrosoft Patches 17 year old MS Office Memory Corruption Flaw
Threat Summary This blog is regarding a memory corruption vulnerability in the equation editor of Microsoft Office that affects...
Read MoreDetection and Prevention of Bad Rabbit Ransomware
Summary There have been numerous reports of a new ransomware outbreak called BadRabbit, which started to spread via “drive-by”...
Read MoreMalware distributed via MS Office DDE “feature” — no macros required!
What is DDE? DDE (Dynamic Data Exchange) is a protocol used to transfer data between applications and provides the...
Read MoreLocky ransomware switches up extension with asasin variant
Email campaigns pushing Locky ransomware are still very prevalent and continue to evolve. Encrypted files are now appended with...
Read MoreBrowser-based Cryptocurrency Mining Ramping Up
Our SOC has observed several cases of browser mining (also referred to as “cryptojacking”) as of late where javascript...
Read MoreSubscribe to Vertek’s Public OTX Feed
Vertek’s OTX Public and Private Pulses provide a summary of the threat, some information regarding the software targeted, and...
Read MoreLatest Locky Variant Encrypts with Ykcol Extension – IoCs and OTX
As you can see, our labs team is still seeing Locky is being distributed in a lot of malspam...
Read MoreWebsite Ransomware Trending Now
Vertek’s security operations team has noticed website ransomware is starting to pick up steam with recent variants of AwesomeWare,...
Read More