During trend Micro researchers monitoring of the ransomware threat landscape, they discovered samples with infection chain characteristics and payloads that can be attributed to FOG ransomware.
A total of nine samples were uploaded to VirusTotal between March 27 and April 2, which the researchers recently discovered were multiple ransomware binaries with .flocked extension and readme.txt notes. Trend Micro observed that these samples initially dropped a note containing key names related to the Department of Government Efficiency (DOGE), an initiative of the current US administration that has been making headlines, recently about a member who allegedly assisted a cybercrime group involved in data theft and cyberstalking an agent of the Federal Bureau of Investigation (FBI). The note also contains instructions to spread the ransomware payload to other computers by pasting the provided code in the note.
Read more…
Source: Trend Micro
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- How A Drive-by Download Attack Locked Down Entire City for 4 Days
October 16, 2017
We don’t really know the pain and cost of a downtime event unless we are directly touched. Be it a flood, electrical failure, ransomware attack or other broad geographic events; we don’t know what it is really like to have to restore IT infrastructure unless we have had to do it ourselves. We look at other people’s ...
- Cyberespionage Group Steps Up Campaigns Against Japanese Firms
October 14, 2017
Researchers are learning more about the cyberespionage group Bronze Butler. While the gang has been targeting Japanese heavy industry since 2012, not much is known about the group’s current modus operandi. In a report released Thursday by the Counter Threat Unit at SecureWorks, a subsidiary of Dell Technologies, researchers paint the most complete picture yet of ...
- Iran to blame for cyber-attack on MPs’ emails – British intelligence
October 14, 2017
Iran is being blamed for a cyber-attack in June on the email accounts of dozens of MPs, according to an unpublished assessment by British intelligence. Disclosure of the report, first revealed by the Times but independently verified by the Guardian, comes at an awkward juncture. Donald Trump made it clear on Friday that he wants to ...
- Hyatt Hit By Credit Card Breach, Again
October 13, 2017
Hyatt Corp., hotel guests are being warned of a credit card breach, the second since December 2015. On Thursday, the hotelier identified 41 of its hotels spread across 13 countries where it confirmed unauthorized access to payment card information. China is the hardest hit by the breach with 18 hotels impacted. Three U.S. hotels were part ...
- London issues call to arms to cyber security community
October 13, 2017
Cyber security community called on to help educate capital’s small businesses about cyber crime and give them practical advice London is calling on the cyber security community to help keep the city’s more than one million small businesses safe from cyber crime. “Cyber crime is a growing problem for everyone, but while individuals are protected by their ...
- Swedish transport agencies targeted in cyber attack
October 12, 2017
Swedish transport authorities were hit by a cyber attack on Thursday morning, a day after trains were delayed as a result of another attack on IT systems monitoring railway traffic. The website of Sweden’s Transport Agency (Transportstyrelsen) was partially down on Thursday morning, according to the agency most likely as a result of a DDoS attack. During ...