HavanaCrypt ransomware spreads through fake google updates

Threat Advisories

HavanaCrypt ransomware spreads through fake google updates

July 13, 2022
Threat Level
Red
Attack Report

For a detailed advisory, download the pdf file here

Summary

HavanaCrypt is a new ransomware that distinguishes itself as a Google software update. It evades detection using a Microsoft web hosting service IP address as the command and control (C&C) server.

Recent Posts

Join Our Newsletter 14,000+ subscribers and growing! Get top cybersecurity news delivered directly to your inbox.
Sign Up to Receive Our Weekly Threat Digest