ESET releases new decryptor for Syrian victims of GandCrab ransomware

ESET has published a new decryption tool for Syrian victims of the GandCrab ransomware. The developers of this infamous malware family released the keys on an underground forum following a tweet from a Syrian victim who had lost pictures of his deceased children to the encrypting malicious code. They want 600 dollars to give me back … More ESET releases new decryptor for Syrian victims of GandCrab ransomware

Sednit adds two zero-day exploits using ‘Trump’s attack on Syria’ as a decoy

Introduction The Sednit group, also known as APT28, Fancy Bear and Sofacy, is a group of attackers operating since at least 2004 and whose main objective is to steal confidential information from specific targets. In October 2016, ESET published an extensive analysis of Sednit’s arsenal and tactics in a whitepaper titled En Route with Sednit. Last … More Sednit adds two zero-day exploits using ‘Trump’s attack on Syria’ as a decoy

After Babar and Bunny, Another Espionage Cartoon: Casper Malware

In March 2014, French newspaper Le Monde revealed that France is suspected by the Communications Security Establishment Canada (CSEC) of having developed and deployed malicious software for espionage purposes. This story was based on presentation slides leaked by Edward Snowden, which were then published by Germany’s Der Spiegel in January 2015. According to the CSEC … More After Babar and Bunny, Another Espionage Cartoon: Casper Malware