Despite a very slim browser market share, Internet Explorer (IE) is still being exploited by exploit kits like the RIG exploit…
Tag: RIG EK
Threat profile: Ranzy Locker ransomware
Ranzy Locker ransomware emerged in late 2020, when the variant began to target victims in the United States. According to a flash alert issued by the FBI,…
Malvertising campaigns come back in full swing
Malvertising campaigns leading to exploit kits are nowhere near as common these days. Indeed, a number of threat actors have moved…
Electrum Bitcoin wallets under siege
By Adam Thomas and Jérôme Segura, with additional contributions from Vasilios Hioueras and S!Ri Since at least late December 2018, many…
Exploit kits: fall 2018 review
Exploit kit (EK) activity continues to surprise us as the weather cools, the leaves change, and we move into the fall of…
RIG exploit kit campaign gets deep into crypto craze
There isn’t a day that goes by without a headline about yet another massive spike in Bitcoin valuation, or a story…
LatentBot piece by piece
LatentBot is a multi-modular Trojan written in Delphi and known to have been around since 2013. Recently, we captured and dissected…
Elusive Moker Trojan is back
UPDATE: This trojan is also known under the names Yebot and Tilon. According to Dr Web, this family is in circulation…
Websites compromised in ‘Decimal IP’ campaign
When looking at malicious traffic, one of the things we are interested in are the hosts involved in a particular attack. For…
The HookAds malvertising campaign
Not long ago we wrote about a new piece of malware called ‘Trick Bot‘ which we caught in a malvertising attack…