Back in 2016, three members of the Bayrob hack group were extradited to the United States. Law enforcers said that Romanian citizens Bogdan Nicolescu aka Masterfraud, aka mf, Danet Tiberiu aka Amightysa, aka amy, and Radu Miclaus aka Minolta, aka min since 2007 have been involved in fraud and fraud , and then their “business”…
Tag: Malvari
Look into the eyes of the malvari. Guide for working with malicious files for beginners
The content of the article If you have ever encountered a virus, you probably remember that the experience is not pleasant. But there are ways to catch and dissect the malware. This is what virus analysts are doing. Today I will introduce you to the basics of this work. We will go through all the…
The influence of mining malvari decreased by almost 70% during 2019 – “Hacker"
Check Point Experts summed up the results of October 2019. According to them, cryptocurrency miners for the first time in two years have lost their leadership in the ranking of the most active malware. Researchers note that the activity of mining malvari continues to decline gradually from 2018, when it was at its peak. So,…
Researchers have noticed an increase in the popularity of Raccoon Malvari
Cybereason Nocturnus Specialists warned about the growing popularity of the Raccoon infostiller, which, according to the company, is already one of the ten most demanded malware on the black market. Raccoon appeared in early 2019 and since April has been actively spreading through underground forums using the malware-as-a-service (MaaS) scheme. Researchers note that in recent…
Muhstik Malvari operators were hacked. Decryption Keys Already Published
The Muhstik ransomware is a relatively new ransomware, the activity of which experts have been observing since the end of September 2019. This ransomware is designed to attack the Taiwanese manufacturer QNAP's NAS, and according to company post, ransomware operators brute force QNAP NAS with weak passwords for built-in phpMyAdmin. After gaining access to the…
Experts have created an interactive map for Malvari Russian hack groups
Researchers at Check Point and Intezer Labs submitted the result of their joint work. Company analysts studied about 2,000 copies of the malvari to create interactive map ties between Russian-speaking groups of "government hackers." Researchers explain that the ecosystem of Russian-language APT (advanced persistent threat) has evolved into a very complex structure and it’s now…
Gootkit Malvari operators left unprotected database in open access
Famous IB expert Bob Dyachenko discoveredthat Gootkit operators left open servers with MongoDB. The detected databases contained a lot of personal information stolen from users. MalvarGootkit was first noticed by specialists back in 2014. It used to be a dangerous banking trojan, but over time, the threat has undergone many changes and evolved into something…