NSA’s EternalBlue exploit reaching new heights since WannaCryptor outbreak

Attack attempts involving the USA’s National Security Agency’s exploit are in hundreds of thousands daily. It has been two years since EternalBlue opened the door to one of the nastiest ransomware outbreaks in history, known as WannaCryptor (or WannaCry). Since the now-infamous malware incident, attempts to use the exploit have only been growing in prevalence. Currently … More NSA’s EternalBlue exploit reaching new heights since WannaCryptor outbreak

Where are we now? The state of play two years on from the 2017 WannaCry attacks

Two years ago on the 12th of May 2017, the now infamous WannaCry ransomware attack struck IT systems in 150 countries around the world. Affecting around 200,000 computers across a diverse range of sectors, from Spain’s telecoms sector to commercial websites and schools, the malware encrypted users’ files and then demanded a ransom, causing unprecedented havoc. While … More Where are we now? The state of play two years on from the 2017 WannaCry attacks

Buhtrap backdoor and ransomware distributed via major advertising platform

Criminal activities against accountants on the rise – Buhtrap and RTM still active. What better way to target accountants than to target them as they search the web, looking for documents pertinent to their job? This is just what has been happening for the past few months, where a group using two well-known backdoors — Buhtrap and RTM — … More Buhtrap backdoor and ransomware distributed via major advertising platform

WannaCryptor ‘accidental hero’ pleads guilty to malware charges

Marcus Hutchins, who is best known for his inadvertent role in blunting the WannaCryptor outbreak two years ago, may now face a stretch behind bars. British malware analyst Marcus Hutchins, who was propelled to cyber-stardom after he helped neutralize the outbreak of the WannaCryptor aka WannaCry ransomworm in May 2017, has pleaded guilty to two charges related … More WannaCryptor ‘accidental hero’ pleads guilty to malware charges

Russia hit by new wave of ransomware spam

January 2019 has seen a dramatic uptick in detections of malicious JavaScript email attachments, an attack vector that mostly lay dormant throughout 2018.  Among the “New Year edition” of malicious spam campaigns relying on this vector, we have detected a new wave of Russian-language spam that distributes ransomware known as Shade or Troldesh, and detected … More Russia hit by new wave of ransomware spam

What is threat cumulativity and what does it mean for digital security?

A reflection on how acknowledging the cumulative nature of cyber-threats and understanding its implications can benefit our digital security. Threat cumulativity is a term I began to use in 2018 to refer to the tendency of new technologies to spawn new threats that add to old threats without displacing them. In this article I give … More What is threat cumulativity and what does it mean for digital security?