Feedly:Fortinet Blog | News and Threat Research - All Posts. Diligence is the Mother of Good Locky Detection

from Fortinet Blog | News and Threat Research - All Posts

These past few weeks, here at FortiGuard Labs we have created a system which monitors Locky ransomware.This system collects new samples and extracts the configuration of the malware. Last 05/30/2016 and 05/31/2016, we found two new variants with some updates added to its code. In this post, we will share first its update specifically on its URI and HTTP POST request and then the new feature.URI updatePreviously, the URI had /userinfo.php which is found from its configuration. With the new variants discovered, the URI has been updated to /access.cgi,...