May 15, 2017 Locky’s Distributors Launch Jaff Ransomware 2 min read - Jaff ransomware is a new variant from the authors of Locky. It works in a similar manner, but is much more expensive for its victims.
Malware May 4, 2017 Neverquest Gang Takes Leave — Is It the End of the Quest? 5 min read - IBM X-Force researchers recently observed a massive drop in Neverquest malware campaigns. Is it the end of an era for this Trojan?
Malware April 24, 2017 The Necurs Botnet: A Pandora’s Box of Malicious Spam 11 min read - Since its initial launch five years ago, the Necurs botnet has quickly ascended the cybercriminal ranks. Today, it controls more than 6 million endpoints.
Advanced Threats February 28, 2017 Dridex’s Cold War: Enter AtomBombing 9 min read - IBM X-Force researchers discovered that an upgraded version of Dridex has been using a new injection method, signifying the Trojan's continued evolution.
January 31, 2017 Dridex Redux? Small-Scale Attacks Suggest Potential Compromise Comeback 2 min read - Researchers detected a wave of phishing attacks in the U.K. delivering malware that shares code with the infamous Dridex banking Trojan.
Fraud Protection December 13, 2016 Nǐ Hǎo TrickBot? Dyre Successor Spreads to Asia 4 min read - The cybergang behind the TrickBot Trojan has moved into Singapore, targeting the many multinational corporations that operate in the region.
X-Force September 29, 2016 Protected API Calls and String Constants: Looting Dridex’s Candy Box 9 min read - Like a child hiding candy from thieving, sweet-toothed siblings, Dridex uses clever tricks to keep secrets regarding its malicious code from researchers.
Malware September 15, 2016 Hey Dridex, Tu Runā Latviski? 5 min read - IBM X-Force Research reported that Dridex recently conducted attacks in unlikely areas, such as Latvia, Lithuania, Estonia and Ukraine.
August 23, 2016 Dridex Malware Targets Businesses 2 min read - Instead of sending phishing emails to millions of random users, the Dridex malware infection is now targeting a smaller number of large financial services.
June 24, 2016 Necurs Botnet Comes Back From the Dead 2 min read - Just a few weeks after the Necurs botnet was shut down for an unknown reason, the threat has made a comeback and is back in operation.