• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   WannaCry

New WannaCry-Mimicking SLocker Abuses QQ Services
  • Posted on:August 2, 2017 at 3:14 am
  • Posted in:Mobile, Ransomware
  • Author:
    Lorin Wu (Mobile Threats Analyst)
0

Trend Micro researchers detected a new SLocker variant that mimics the GUI of the WannaCry crypto-ransomware on the Android platform. Detected as ANDROIDOS_SLOCKER.OPSCB, this new SLocker mobile ransomware variant features new routines that utilize features of the Chinese social network QQ, along with persistent screen-locking capabilities.

SLocker, an Android file-encrypting ransomware first detected and analyzed in July, was found mimicking WannaCry’s GUI. Although Chinese police already arrested the ransomware’s alleged creator, other SLocker operators clearly remained unfazed.

Read More
Tags: mobile ransomwareSLockerWannaCry

SLocker Mobile Ransomware Starts Mimicking WannaCry
  • Posted on:July 5, 2017 at 7:00 am
  • Posted in:Mobile, Ransomware
  • Author:
    Mobile Threat Response Team
0

Early this month, a new variant of mobile ransomware SLocker (detected by Trend Micro as ANDROIDOS_SLOCKER.OPST) was detected, copying the GUI of the now-infamous WannaCry. The SLocker family is one of the oldest mobile lock screen and file-encrypting ransomware and used to impersonate law enforcement agencies to convince victims to pay their ransom. After laying low for a few years, it had a sudden resurgence last May. This particular SLocker variant is notable for being one of the first Android file-encrypting ransomware, and the first mobile ransomware to capitalize on the success of the previous WannaCry outbreak.

Read More
Tags: mobile ransomwareSLockerWannaCry

Large-Scale Petya Ransomware Attack In Progress, Hits Europe Hard
  • Posted on:June 27, 2017 at 12:37 pm
  • Posted in:Malware, Ransomware
  • Author:
    Trend Micro
0

A large-scale ransomware attack reported to be caused by a variant of the Petya ransomware is currently hitting various users, particularly in Europe. This variant, which Trend Micro already detects as RANSOM_PETYA.SMA, is known to use both the EternalBlue exploit and the PsExec tool as infection vectors.

Read More
Tags: EternalBluepetyaransomwareWannaCry

Victims Lost US$1B to Ransomware
  • Posted on:May 24, 2017 at 5:00 am
  • Posted in:Ransomware
  • Author:
    Keith Cortez (Technical Communications)
0

Over the course of 2016, ransomware operators trailed their sights on bigger targets—companies and organizations, both large and small—and raked in US$1 billion for their efforts.

Even before WannaCry reared its ugly head, companies and individuals worldwide have already been suffering the threat’s dire consequences—all documented in our report, “Ransomware: Past, Present, and Future.” After just one year, we saw a staggering 752% increase in the number of ransomware families.

Read More
Tags: ransomwareWannaCry

After WannaCry, UIWIX Ransomware and Monero-Mining Malware Follow Suit
  • Posted on:May 17, 2017 at 7:01 am
  • Posted in:Exploits, Malware, Ransomware, Vulnerabilities
  • Author:
    Trend Micro
0

WannaCry ransomware’s outbreak during the weekend was mitigated by having its kill switch domain registered. It was only a matter of time, however, for other cybercriminals to follow suit. Case in point: the emergence of UIWIX ransomware (detected by Trend Micro as RANSOM_UIWIX.A) and one notable Trojan our sensors detected.

Read More
Tags: Adylkuzzgh0stransomwareUIWIXVulnerabilitiesWannaCry
Page 1 of 212

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Business Email Compromise

  • How can a sophisticated email scam cause more than $5.3 billion in damages to businesses around the world?
    See the numbers behind BEC

Latest Ransomware Posts

  • Locky Ransomware Pushed Alongside FakeGlobe in Upgraded Spam Campaigns
  • Android Mobile Ransomware: Bigger, Badder, Better?
  • Cerber Ransomware Evolves Again, Now Steals From Bitcoin Wallets
  • New WannaCry-Mimicking SLocker Abuses QQ Services
  • LeakerLocker Mobile Ransomware Threatens to Expose User Information

Ransomware 101

  • This infographic shows how ransomware has evolved, how big the problem has become, and ways to avoid being a ransomware victim.
    Check the infographic

Popular Posts

  • iXintpwn/YJSNPI Abuses iOS’s Config Profile, can Crash Devices
  • The Crisis of Connected Cars: When Vulnerabilities Affect the CAN Standard
  • Cryptocurrency Miner Uses WMI and EternalBlue To Spread Filelessly
  • GhostClicker Adware is a Phantomlike Android Click Fraud
  • A Look at JS_POWMET, a Completely Fileless Malware

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.