MalwareHunterTeam cyber security experts discover a variant of the ransomware that adds IP and Computer Name blacklisting. Probably behind it there is still GRIM SPIDER cybercrime group.
The cyber security experts: The APT’s malicious code implements a custom protocol that allows traffic to be funneled between a source and a destination IP address.
The US cyber security experts: It’s a new Trojan with 9 files infected. Seven of them are "proxy applications that mask traffic between malware and the remote operators.
McAfee cyber security experts, after analyzing the C2 seized server, confirm that Lazarus is behind the cyber attacks launched via Dropbox.