Jigsaw Ransomware and old malware is back with a phishing campaign that spread LokiBot. The LokiBot install Jigsaw Ransomware as its payload using an old Microsoft Office CVE-2017-11882 remote code execution vulnerability in Equation Editor.

This is an Andorid Locker application that upon execute abuse android.permission.SYSTEM_ALERT_WINDOW and ask for a code to close the alert. It did not ask for ransom just an annoying alert box.

njRAT is one of the oldest and popular remote access trojan (RAT) in the malware world. njRAT is also known as Bladabindi RAT Njw0rm RAT. The reason of its popularity is the fact its source code is available and YouTube has tons of tutorials on it.

Cerberus Android Banking Trojan is back with more power and benefiting from the COVID-19 pandemic fear. It can by-pass Google Authenticator two-factor authentication which is considered more secure alternative to SMS.

LockBit Ransomware is an emerging threat and growing stronger day by day. It is following the footsteps of REvil and Maze Ransomware by threatening to publicize the user data if the ransom demand is not fulfilled.