The new Avaddon ransomware has come alive in an enormous spam campaign targeting online users with emails containing a wink emoji.
What is happening
Looking into the past
Phorphiex/Trik botnet is one of the few botnets capable of packing a strong payload punch.
Trik botnet is at least a decade old and first was dissipated via live chat and USB storage drives.
While last year’s campaign contained female names in the phishing email, this year the display names were male.
In 2018, 43 million email addresses leaked from the C&C server of the botnet.
The threat actors behind Avaddon have posted on Russian hacker forums that they are a Ransomware-as-a-Service (RaaS) program. Following the RaaS rules, the actors will not target the Commonwealth of Independent States. Security experts expect to see a rise in advanced attack tactics and increasing distribution of the ransomware.