indicators of compromise

3 Results / Page 1 of 1

Background

todayDecember 15, 2017

  • 8
close

News + Malware + Ransomware + Backdoor + Threat Intelligence + Breach Mjolnir Security

Remote Desktop Server Owners beware, new HC7 GOTYA Ransomware Installed via Remote Desktop Services

There was a time when most Server Administrations/Network Administrators would just change the port 3389 to any other and/or change default login username to a RDP server and assume its secure. While this may best practice, it doesnt really help as a simple nmap scan reveals the listening port and ...

locky-analysis by Mjolnir Security

todayOctober 10, 2017

  • 3
close

News + Malware Mjolnir Security

The return of Locky Ransomware

Locky is a ransomware released in 2016, which became very active in early 2017, died for a bit and came back from the dead towards the end of August 2017. And came with a bang, according to ZDNET the return was announced in style by sending as many as 23 million ...