A week in security (Nov 29 – Dec 5)
The most important and interesting security stories from the last seven days.
Emotet’s back and it isn’t wasting any time
The world’s most notorious malware is back and it’s growing fast. What are researchers seeing and what does it mean?
Emotet being spread via malicious Windows App Installer packages
Emotet is using a new attack vector, which makes Microsoft look bad. How does malware end up on Microsoft’s Azure cloud service and get distributed to victims from there?
A week in security (Nov 15 – Nov 21)
The most important and interesting security stories from the last seven days.
TrickBot helps Emotet come back from the dead
The infamous Emotet makes yet another comeback despite having been severely dismantled earlier this year.
Lessons from a real-life ransomware attack
Recovering from a ransomware attack shouldn’t be a mysterious process. A sysadmin reveals all the best guidance to get through it.
Police seize DoubleVPN data, servers, and domain
DoubleVPN, a VPN service that promised to double- and triple-encrypt web activity, was seized after allegedly being favored for cybercrime.
Clop stopped? Ransomware gang loses Tesla and other treasures in police raid
Clop ransomware activity was stopped by Ukrainian cops on Wednesday who shut down the ransomware gang’s infrastructure and made arrests.
DOJ recovers pipeline ransom, signals more aggressive approach to cybercrime
The US Department of Justice announced Monday that it recovered much of the ransomware payment that Colonial Pipeline paid to Darkside.
Ryuk ransomware develops worm-like capability
French researchers have found a Ryuk ransomware variant that can spread laterally through an infected network.
