Malware on the rise, Evil Corp Malware Gang returns and Major Breach of Police Departments and Fusion Centers

Malware on the rise, Evil Corp Malware Gang returns and Major Breach of Police Departments and Fusion Centers, Info published Online.

Last week was a busy week fighting malware attacks and phishing schemes.  There were plenty of emails forwarded to me to check for validity checks... a client whose credentials were compromised and another where an associate was compromised and for some reason this external associate had my email address and I received the bogus email as well.

The email I received from my compromised client was a first.  It contained an HTML file that deposited itself into my Onedrive.  When I clicked on it, file explorer took me to my OneDrive folder and displayed a photo placed in there by the HTML code.  I never had seen that before, I deleted all instances of the file and scanned the OneDrive folder on my computer with Malwarebytes.  Next I ended up mapping a network drive to the client's online SharePoint folder, deleted all instances of the file and perform a virus scan via the network drive mapping to be certain no other threats existed.

This was an example of Fileless malware.  Many fileless attacks begin by exploiting an existing legitimate program, becoming a newly launched “sub-process,” or by using existing legitimate tools built into the OS (like Microsoft’s PowerShell). The end result is that fileless attacks are harder to detect and stop. If you aren’t already very familiar with common fileless attack techniques and programs, you probably should be if you want a career in computer security.

Be very careful while online and make sure your anti-virus software is current and up to date.  A Firewall should be in place and running.  If a website is compromised and contains code placed there by hackers, it can be downloaded and executed on your computer.  A good firewall can stop many of these attempts at the point of attack.

The following link describes 9 types of malware.

https://www.csoonline.com/article/2615925/security-your-quick-guide-to-malware-types.html

Evil Corp malware gang returns with WastedLocker ransomware

Evil Corp, one of the biggest malware operations on the internet, has slowly returned to life after several of its members were charged by the US Department of Justice in December 2019.

A Ransomware attack is not only difficult to recover from but has caused disruption in services and even caused bankruptcy of companies in the past.  It cost the City of Atlanta over $2.6 million dollars to clean up after one such attack.

  
https://www.wired.com/story/atlanta-spent-26m-recover-from-ransomware-scare/

Now comes news that one of the most successful groups is back in business after the DOJ charged several members in 2019.

https://www.zdnet.com/article/evil-corp-malware-gang-returns-with-wastedlocker-ransomware/

BlueLeaks: Data from 200 US police departments & fusion centers published online

Activist group DDoSecrets published 296 GB of police data on Friday, June 19.

https://www.zdnet.com/article/blueleaks-data-from-200-us-police-departments-fusion-centers-published-online/?ftag=TRE-03-10aaa6b&bhid=2219791&mid=12891070&cid=716603217

The DDoSecrets group has often been categorized as "an alternative to Wikileaks." The group's previous leaks have exposed major government corruption scandals across the world, and DDoSecrets' work has been cited in the New York Times, CNN, The Daily Beast, and other major publications.

DForce Intel based Workstations with SSDs, Solid State Drives.