HavanaCrypt ransomware spreads through fake google updates
HavanaCrypt ransomware spreads through fake google updates
Threat Level
Attack Report
For a detailed advisory, download the pdf file here
Summary
HavanaCrypt is a new ransomware that distinguishes itself as a Google software update. It evades detection using a Microsoft web hosting service IP address as the command and control (C&C) server.