The VX-Underground malware-sharing collective has been framed by a new variant of Phobos ransomware, indicating the group’s involvement in encryptor attacks. Launched in 2018, Phobos is a form of Ransomware-as-a-Service originating from the Crysis ransomware family. While not an “elite” operation, it has a substantial reach. This latest variant features ransom notes mimicking VX-Underground’s style and contact details, suggesting threat actors have display a vested interest in the cybersecurity community.
Malware exploits Avast driver vulnerability to terminate security processes
An outdated, vulnerable driver from Avast is being exploited in a sophisticated cyberattack aimed at disabling security measures on targeted systems, according to cybersecurity firm
