Uses malvertising to spread Danbot Trojan, then Cactus ransomware
Although it appears as ransomware, the threat actually destroys data on a target system.
Kaspersky said last month that it had found more than 400 infected websites spreading the notorious banking Trojan
Reports of Ukrainian media organisations receiving emails with compromised Word docs, and AsyncRAT Trojan delivered by groups exploiting the unpatched flaw
The tactic helps save time and money when it comes to setting up attack infrastructure, as well as making it easier for attackers to hide their tracks
The templates trick users into enabling malicious macros in Office documents
The US government and cyber security experts see ransomware attacks as one of the biggest threats to the upcoming elections
But Emotet's operators have now patched the flaw
Malwarebytes claims Pakistan state-sponsored group is using a fake Indian government advisory to spread remote-access Trojan
One campaign involves an alleged state-sponsored threat group that has compromised at least 17 US utilities in the past five months