AppRiver Update

Cybersecurity News and Threat Intelligence for Business

Necurs Botnet Launching Massive Ransomware Attacks

on December 26, 2017 | by David Pickett | AppRiver, botnet, globeimposter, locky, malware, necurs, Ransomware, securetide, Security Risks

****Update: 12/29/2017 9 A.M.**** Necurs botnet operators continue to show unpredictability. Following the afternoon blog update yesterday they turned up the volume. It ended up being our highest volume day of the year originating from the massive botnet. We blocked 49,784,485 million ransomware ... read more

Hancitor Picking Up Steam

on June 02, 2017 | by David Pickett | AppRiver, botnet, Chanitor, Digital Degenerate, Hancitor, macros, malware, securetide, Security Risks, Spam, TorDal, trojan, word

The Hancitor (aka Chanitor & TorDal) malicious downloader has been picking up steam. read more

Necurs Returning After a Short Vacation

on June 21, 2016 | by Jonathan French | botnet, Digital Degenerate, drydex, js, locky, malware, necurs, Virus

Virus traffic has been huge so far in 2016. Mostly, this has been thanks to ransomware, and in particular, Locky distributed by the Necurs botnet. We've been seeing malware traffic counts in the tens of millions daily here for sometime now. This, of course, has its ups and downs, but for the past th ... read more

Fake delivery emails lead to malware

on January 07, 2014 | by Jonathan French | Asprox, best buy, botnet, costco, Digital Degenerate, infection, malware, walmart

We have been seeing an ongoing malware campaign claiming to be package delivery emails from places like Walmart, BestBuy, and Costco. The emails say a delivery was missed and contain a link to a form to fill out. The link actually leads to an external compromised site containing a malware zip downlo ... read more