MALWARE WATCH REPORT VOL 3 ISSUE 12

Sunday 23rd of March 2025 18:58:38

Malware Newsletter: Round 38

In this week's malware roundup, we're highlighting some of the most significant cyber threats and attacks that have made headlines. From the latest ransomware attacks to the discovery of a critical vulnerability in popular software, here's what you need to know:

Ransomware Attacks

A wave of ransomware attacks has been reported across the globe, with victims including a major US-based hospital chain and several European organizations. The attacks are believed to be linked to the notorious Ryuk ransomware, which has been known to target healthcare and healthcare-related organizations.

In a separate incident, a school district in the US was hit by a ransomware attack, resulting in the disruption of educational services. The attackers demanded a significant ransom payment in exchange for the decryption key.

Vulnerability Discovered

Security researchers have discovered a critical vulnerability in the popular Apache Struts 2 framework, which is used by many organizations around the world. The vulnerability, known as CVE-2017-5638, allows attackers to inject arbitrary code into the framework, potentially leading to remote code execution.

The vulnerability has been exploited in the wild, with several organizations reporting successful attacks. It is essential for organizations to patch the vulnerability as soon as possible to prevent further attacks.

Other Malware News

  • A new variant of the Dridex malware has been detected, which is capable of evading detection by traditional antivirus software.
  • Researchers have discovered a new type of malware that targets the popular WhatsApp messaging app, allowing attackers to intercept and modify messages.
  • A critical vulnerability has been discovered in the popular OpenSSL library, which could potentially allow attackers to intercept and decrypt sensitive data.

Takeaways

The latest malware news highlights the importance of staying vigilant and proactive in the face of evolving cyber threats. It is crucial for organizations to stay up-to-date with the latest security patches and updates, as well as implement robust security measures to prevent attacks.

In the meantime, we will continue to monitor the situation and provide updates as more information becomes available. Stay safe online!