Emotet – Advanced, self-propagate and modular Trojan. It is a competitor to Coinhive, trying to pull the rug under it by asking a smaller percentage of revenue from websites. An attacker can leverage this vulnerability to disclose memory contents of a connected client or server. These operations have emerged over the last two months, and Check Point’s researchers noticed a new version of the ransomware is distributed in one of the latest campaigns. To effectively combat this, our researchers continuously trace them based on their malware family DNA – so it’s essential that organizations keep their security solutions fully updated. The vulnerability is due to an error when handling TLS/DTLS heartbeat packets.February’s Top 3 ‘Most Exploited’ vulnerabilities:Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow (CVE-2017-7269) - By sending a crafted request over a network to Microsoft Windows Server 2003 R2 through Microsoft Internet Information Services 6.

Its main function is displaying ads, however, it is also able to gain access to key security details built into the OS, allowing an attacker to obtain sensitive user data. The implanted JavaScript uses a great deal of the computational resources of end users’ machines to mine coins and may crash the system.Hiddad - Android malware which repackages legitimate apps and then released them to a third-party store.Check Point Research, the Threat Intelligence arm of Check Point Software Technologies Ltd. Check Point’s Global Threat Impact Index and its ThreatCloud Map is powered by Check Point’s ThreatCloud intelligence, the largest collaborative network to fight cybercrime which delivers threat data and attack trends from a global network of threat sensors. The index reveals that, despite shutting down on March 8th, 2019, Coinhive has once again led the Global Threat Index, marking the 15th consecutive month at the top of the list.

The ThreatCloud database holds over 250 million addresses analyzed for bot discovery, more than 11 million malware signatures and over 5.. Coinhive remains the top malware, impacting 10% of organizations worldwide.Cryptoloot - Crypto-Miner that uses the victim’s CPU or GPU power and existing resources for crypto mining - adding transactions to the blockchain and releasing new currency.OpenSSL TLS DTLS Heartbeat Information Disclosure (CVE-2014-0160; CVE-2014-0346) - An information disclosure vulnerability exists in OpenSSL. The vulnerability is due to PHPMyAdmin misconfiguration. In addition, it can be spread through phishing spam emails containing malicious attachments or links. A remote attacker can exploit this high speed injection molding machine vulnerability by sending a specially crafted HTTP request to the target.Check Point researchers have also discovered several widespread campaigns distributing the landgrab ransomware that have targeted Japan, Germany, Canada and Australia, among others. CVE-2017-7269 is still leading the top exploited vulnerabilities with 45%.Check Point’s researchers also analyzed the most exploited cyber vulnerabilities.5 million infected websites, and identifies millions of malware types daily. GandCrab’s new version proves once again that although there are seemingly static malware families that stay in the top malware list for several months, they are actually evolving and developing to evade detection.