FrameworkPOS, aka TRINITY, is POS malware associated with a threat actor FIN6. It is designed to capture physical point-of-sales systems in order to gain Track1 and Track2 data, which includes credit card account number, expiration date, and more.

JSWorm as the name might have suggest that perhaps it is a Worm written in JavaScript, is not true. It is a ransomware which encrypts its victims file and ask for BTC to decrypt them back.

Emotet, one of the most advanced and dangerous botnets in the world in circulation for years, returns later a four-month break through a new malspam campaign, aimed at organizations and users. Starting from 16 September 2019 the botnet has completely resurfaced and resumed spamming operations.

Syrk Ransomware set a trap for Fortnite gamers, it disguise as a cheat hack, but actually encrypts files and then deletes them every two hours unless the victim pays up.

This Wiper is named as GermanWiper due to its targeting of German victims and it is a destructive wiper rather than ransomware. It destroys its victim's files by filling zeros in it and yet ask for 0.15 BTC or $1500.