Security Affairs

MARCH 1, 2021

” reads the analysis published by researchers Gabor Szappanos and Andrew Brandt from Sophos. ” continues the analysis. file is the initial infector, and the only stage of the infection at which a malicious file is written to the filesystem. “This.js

Search queries 114

Search queries CMS Ransomware File names 114

Security Affairs

APRIL 2, 2019

of the popular CMS that are affected by a cross-site request forgery (CSRF) flaw that resides in the comment section of WordPress that is enabled by defaul t. According to the experts, the cybercriminals targeted websites running outdated CMS plugins and themes or server-side software. ” reads the analysis from Zscaler.

CMS 111

CMS Phishing Ransomware File names 111

Security Affairs

DECEMBER 17, 2019

And our analysis shows that this is a fully functional, covert and RAT program targeting both Windows and Linux platforms, and the samples share some key characters being used by Lazarus Group.” ” reads the analysis published by Qihoo 360 Netlab. com /cms/ wp -content/uploads/2015/12/. ” continues the analysis.

CMS 83

CMS File names Encryption Access 83

Security Affairs

FEBRUARY 19, 2019

Technical analysis. The phishing email contains a.zip file named “slavneft.zakaz.zip”, which means something like “slavneft order” in English, showing a direct reference to “Slavneft”. It contains a russian speaking JavaScript file named “«??? «??? «?????????» ??????????? Content of README.txt file.

Ransomware 76

Ransomware Mining File names Encryption 76