<\/p>\n
This week’s Threat Recap covers everything from,\u00a0‘Fantom’, the new ransomware that disguises itself as a Windows update, to hackers using Facebook photos to trick facial-recognition logins.<\/p>\n
Recently, researchers have announced the public availability of decryption keys for users<\/a> affected by the Wildfire ransomware variant. This particular variant did focused on mainly Dutch email domains and infected over 5,300 systems in the last month alone. Infected users were demanded a ransom of 1.5 bitcoins after opening a fake delivery form via email attachment.<\/p>\n A new Android app called Android\/Twitoor has been used as a backdoor<\/a> to spread malware onto smartphones. By having the malware check several Twitter accounts periodically, the app is able to receive updates without the malware authors having a need to maintain their own command and control servers. Windows-based Twitter botnets have been in use for several years now, but Android-based version is a much newer practice, as many users rely more and more on mobile devices for everyday banking, communication, etc.<\/p>\n A new ransomware variant has been discovered in the wild called Fantom<\/a>. The ransomware disguises itself as an important windows update while it begins encrypting the victim’s files. Once executed, the malware runs a file called WindowsUpdate.exe and displays a locked splash screen showing the update currently in progress. Once encryption is complete, the user is left with an ominous wallpaper and their files showing the added ‘.fantom’ extension.<\/p>\nAndroid Botnet Receiving Commands from Twitter<\/strong><\/h5>\n
Fantom – New Ransomware Disguised as Windows Update<\/strong><\/h5>\n
iOS Vulnerabilities Used to Target Foreign Activist<\/strong><\/h5>\n