Category Archives: Crypto-Ransomware

Locky, Cerber ransomware still expecting, targeting UAC

Today was a heavy spam day, with the bad guys installing Locky and Cerber crypto-ransomware (among other things) where they could. Ransomware like Locky and Cerber are novelties again after dropping off the mainstream news radar long enough, but they never left the stage. Today’s Locky and Cerber samples show they are still defeating the “Admin Culture” of Windows, even while they are targeting the minority of users that don’t run as full admins.

Locky and Cerber are still targeting User Account Control (UAC), but their success lies with users that are still running Windows XP or have turned off … Read more