Snake Ransomware, a new family of ransomwares like Ryuk, Maze, REvil. It written in GoLang, an opensource language, which is becoming popular among exploit writers. It encrypts data of its victim and appended EKANS and the end of the file.

Ragnarok Ransomware authors target Citrix ADC servers that are vulnerable to CVE-2019-19781. After they gain a foot hold, additional modules are downloaded to exploited server to scan for Windows computers on the network that are vulnerable to the EternalBlue.

Dtrack RAT's latest victim is Kudankulam Nuclear Power Plant (KKNPP). It is related to Lazarus Group which believe to be a North Korean state sponsor threat actor. The power plant had an unexpected shutdown on one of its reactors which sparks a controversy which now is confirmed after The Nuclear Power Corporation of India Limited (NPCIL) admission on claims of a malware attack on the Kudankulam Nuclear Power Plant (KKNPP) are true.

Casbaneiro, a banking trojan designed to deceive the victims, proposing the display of fake pop-up windows that try to convince the unfortunates to enter sensitive data in order to steal it and use it fraudulently.

FTCODE Ransomware encrypts user data using AES-256 (in CBC mode) + RSA-1024, and then requires a ransom of $500 to return the files. FTCODE ransomware mainly target Italian companies. It is spreading via email spam campaign which previously know to distribute JasperLoader and Gootkit.