by jeff | Jun 27, 2017 | Malware, News
#petya #petrWrap #notPetya Win32/Diskcoder.Petya.C Ransomware attack. About This gist was built by the community of the researchers and was scribed by Kir and Igor from the QIWI/Vulners. We are grateful for the help of all those who sent us the data, links and...
by jeff | Jun 1, 2017 | Jeff, Malware, News
As per my previous update, the idea behind what they wanted to do was a good one, but legally not so much. Seems as humans we just cannot get around doing the right thing and being proactive. We only understand how to react to when things go wrong. I’m...
by jeff | May 17, 2017 | Analysis, Jeff, Malware, Network
It was just a matter of time until other organisations or individuals followed the path set by WannaCry last weekend. Seems there is another variant of ransomware doing the rounds which is exploiting the same loop hole as WannaCry is using port 445 to enumerate and...
by jeff | May 15, 2017 | Analysis, Jeff, Malware, News
This is taken from the nmap seclist page. A script for nmap has been written that should allow you to scan your network to determine if its vulnerable. It may not be perfect but I am sure it will help someone out there. http://seclists.org/nmap-dev/2017/q2/79 Hey...
by jeff | May 14, 2017 | Analysis, Jeff, Malware, Network, News
Finally here is my #WCry/#WanaCry Ransomware Technical Analysis @EndgameInc https://t.co/ef49EgyK4M pic.twitter.com/EMonFweVR0— Malware Unicorn (@malwareunicorn) 14 May 2017
by jeff | May 14, 2017 | Analysis, Jeff, Malware
It seems the initial wave has been stopped by Researchers, and then we had another one as detailed in the link below. https://blog.comae.io/wannacry-new-variants-detected-b8908fefea7e More good information and I suggest reading through it all if you have not done so...