You searched for FIN6

Your search for FIN6 returned 6 results

Sort Results:

Relevant Recent

Did you mean: find

FighterPOS malware strikes over 100 terminals in Brazil, captures info for 22K cards

Security News

FIN6 uses legit payment card data, GRABNEW-infected systems to steal info

Teri Robinson

April 21, 2016

A new report from FireEye Threat Intelligence said that one case investigated by Mandiant indicated that a victim computer "was originally compromised with GRABNEW malware by a separate threat actor."

Cybercrime, Malware, Ransomware, Security News

FIN6 cybercrime actor adds ransomware to its repertoire

Bradley Barth

April 9, 2019

Traditionally associated with payment card theft, the cybercriminal group FIN6 has expanded its operations to apparently include ransomware attacks using the malicious encryption programs Ryuk and LockerGoga, according to researchers. Investigations by the FireEye Intelligence research team and the company’s Mandiant division have revealed that FIN6’s ransomware activity dates back to July 2018, and has…

Retail, Security News

Fin6 using FrameworkPOS scraping malware in POS attacks

Doug Olenick

February 27, 2019

The threat group Fin6 has been connected to a string of point-of-sale attacks against VMWare Horizon thin clients. The security firm Morphisec Labs reported the attacks have been taking place for eight to 10 weeks with a particular spike on Feb. 6 that saw numerous attempted downloads of the Cobalt Strike backdoor. Morphisec has tentatively connected…

Data Breach, Security News

Evidence tying Cobalt Group to Magecart Group 4 unveiled

Doug Olenick

October 3, 2019

The security firms Malwarebytes and HYAS have strung together several pieces of evidence that they believe tie Magecart Group 4 to the Cobalt Group. The two companies found that the Cobalt Group and Magecart Group 4 have several overarching similarities, such as the use of advanced techniques during their attacks and a history with banking…

Cybercrime, Featured, Security News

Cybercrime increasingly converging towards ransomware, cartel models

Derek B. Johnson

October 14, 2020

A pair of new reports this week illustrate the way big game hunting threat groups are shifting operations to ransomware and complimenting each other's work.

Cybercrime, Ransomware, Security News

New PureLocker ransomware built for targeted attacks, linked to MaaS dealer

Bradley Barth

November 14, 2019

A newly discovered ransomware called PureLocker is targeting the production servers of enterprises, while exhibiting some behavior that’s very unusual for most malicious encryptors. Among its quirky features: it’s written in the PureBasic programming language, which helps it avoid conventional anti-malware detection engines; it’s very picky about who it infects, only executing if the victim machine…

Next post in Ransomware

Active Filters