CYREN Security Blog




Locky Morphs Again: Now Delivered as DLL

by Maharlito Aquino

Filed under Malware Analysis, Ransomware.

We are now seeing a new wave of Locky which has yet again updated its delivery mechanism, by adding another layer of obfuscation to its downloader script, which Cyren detects as JS/Locky.AT!Eldorado.

New Cyberthreat Report: A Deep Dive on Phishing

by Lior Kohavi

Filed under Phishing, Security Research & Analysis.

A recent Osterman Research survey conducted on behalf of Cyren found phishing to be the top threat category for small- to medium-sized businesses (up to 3,000 employees), with 43% suffering a phishing breach in the last 12 months. ...

CYREN Survey Benchmarks Security at SMBs — 71% Hacked in the Past Year!

by John Callon

CYREN teamed with Osterman Research to ask questions of IT and security professionals at over 300 small and medium-sized businesses during June 2016.

This article summarizes some of the survey highlights...

Locky Ransomware Now Embedded in Javascript

by Maharlito Aquino

Filed under Malware Analysis, Ransomware, Security Research & Analysis.

A new wave of Locky malware emails have been making the rounds since yesterday (July 20, 2016). The attached javascript, however, has evolved from being a downloader component into becoming the actual ransomware. These javascript variants are detected by CYREN as dropper trojans named JS/LockyDrop.A and  JS/LockyDrop.A!Eldorado...

Locky Distributors Switch to Word Macro and then WSF Files

by Avi Turiel

Locky Ransomware continues to be distributed in large numbers, however, the email attachments have been changed, probably due to greater blocking of the JavaScript files that have been favored until now...