Ransomware developers seem to have found another way to monetize their operations by adding a DDoS component to their malicious payloads.
Security researchers from Invincea reported this past Wednesday on a malware sample that appeared to be a modified version of an older threat, the Cerber ransomware.
The malware analysis team that inspected the file discovered that, besides the file encryption and screen locking capabilities seen in most ransomware families, this threat also comes with an additional payload, which, when put under observation, seemed to be launching network packets towards a network subnet.
This type of behavior is specific to DDoS bots, and this was the first time something like this was seen bundled with ransomware.
TOKYO (Kyodo) -- A total of 1.4 billion yen ($12.7 million) in cash has been stolen from some 1,400 automated teller machines in convenience stores across Japan in the space of two hours earlier this month, investigative sources said Sunday.
Police suspect that the cash was withdrawn at ATMs using counterfeit credit cards containing account information leaked from a South African bank.
Japanese police will work with South African authorities through the International Criminal Police Organization to look into the major theft, including how credit card information was leaked, the sources said.