Gootloader now uses 1,000-part ZIP archives for stealthy delivery

The Gootloader malware, typically used for initial access, is now using a malformed ZIP archive designed to evade detection ...
Security Boulevard

Malware Campaign Abuses Booking.com Against Hospitality Sector

Securonix is detailing a multi-stage campaign that starts with a bogus Booking.com message that runs through a ClickFix technique and a fake Blue Screen of Death before dropping the DCRat malware that ...
Enterprise Times

Securonix says Windows malware SHADOW#REACTOR drops Remcos RAT

Securonix has published a blog giving details of a new multi-stage Windows malware campaign it calls SHADOW#REACTOR. Its goal is to deploy the Remcos RAT ...
Infosecurity Magazine

DeadLock Ransomware Uses Polygon Smart Contracts For Proxy Rotation

A ransomware operation known as DeadLock has been observed abusing Polygon blockchain smart contracts to manage and rotate ...

Beware: New ‘DeadLock’ Ransomware Weaponizes Polygon Smart Contracts to Stay Invisible

Cybersecurity researchers are becoming interested in a newly discovered ransomware strain called DeadLock that abuses Polygon smart contracts to silently service its infrastructure and bypass ...
Live Bitcoin News

Hackers Hide Behind Blockchain: New Ransomware Evades Takedowns

DeadLock ransomware relies on Polygon smart contracts to spin proxy servers to produce a nearly unshuttable infrastructure.