Security News > 2021 > November > Magniber ransomware gang now exploits Internet Explorer flaws in attacks
The Magniber ransomware gang is now using two Internet Explorer vulnerabilities and malicious advertisements to infect users and encrypt their devices.
The Magniber gang is known for its use of vulnerabilities to breach systems and deploy their ransomware.
The most recent Magniber activity focuses on exploiting Internet Explorer vulnerabilities using malvertising that pushes exploit kits, as confirmed by Tencent Security researchers who identified "Fresh" payloads.
Another reason why Magniber may have turned to Internet Explorer flaws is that they are relatively easy to trigger, relying solely upon stimulating the recipient's curiosity to open a file or webpage.
Since its launch, the Magniber ransomware has been under very active development, and its payload has been completely rewritten three times.
Finally, Magniber isn't following the trend of file-stealing and double-extortion, so the damage of their attacks is limited to file encryption.
News URL
Related news
- Lessons from a Ransomware Attack against the British Library (source)
- Jackson County in state of emergency after ransomware attack (source)
- Panera Bread week-long IT outage caused by ransomware attack (source)
- The Week in Ransomware - April 5th 2024 - Virtual Machines under Attack (source)
- How can the energy sector bolster its resilience to ransomware attacks? (source)
- The Drop in Ransomware Attacks in 2024 and What it Means (source)
- Change Healthcare faces second ransomware dilemma weeks after ALPHV attack (source)
- Daixin ransomware gang claims attack on Omni Hotels (source)
- Change Healthcare’s ransomware attack costs edge toward $1B so far (source)
- Exploit released for Palo Alto PAN-OS bug used in attacks, patch now (source)