One of the most dangerous forms of ransomware has just evolved to be harder to spot

[Porthos]

One of the most common forms of ransomware is evolving a new technique in order to become even more effective and harder to detect - the ability to evade detection by cybersecurity tools which use machine learning to identify threats. Rather than relying on specifically identified signatures of known threats, some cybersecurity defences employ machine learning in an effort to detect previously unknown malware and the methods used to deliver them to unsuspecting victims. The Cerber family of ransomware is already one of the most successful variants of file-encrypting malware, at least partially thanks to its malicious authors spreading it by offering the code to anyone who wants it - for a cut ...

http://www.zdnet.com/article/one-of...omware-has-just-evolved-to-be-harder-to-spot/

 

[GTP]

I still regard the "end user" as the weakest link in the chain. It doesn't matter what defences you have in place, it all comes down to the user.
Education is key to stopping ransomware.

 

[FremontPC]

"But rather than encouraging the victim to click on a link to download a file, these emails contain a link to Dropbox controlled by the attackers which downloads and self-extracts the Cerber payload."

So much for user ed. Sounds like the effort would be better focused on edge protection, if you can set a rule to cover it.

 

[ComputerRepairTech]

You know the malware world is getting weak when "One of the most dangerous forms of ransomware" makes news by using dropbox.

"However, in order to evade detection and monitoring by cybersecurity researchers, this version of Cerber will check to see if it's running on a virtual machine, sandbox, or if certain products are running on the machine"

GASP! its 1999 all over again!