ESET LiveGrid® telemetry shows a spike in detections of the JS/Danger.ScriptAttachment malware in several European countries. The most notable detection ratios are seen in Luxembourg (67%), Czech Republic (60%), Austria (57%), Netherlands (54%) and the United Kingdom (51%), but also in other European states.
After delivery of an email attachment is opened, the threat behind these detections is designed to download and install different variants of malware to victims’ machines.
If the user falls for the scam, JS/Danger.ScriptAttachment tries to download other malicious code, the majority of which consists of various crypto-ransomware families such as Locky. A detailed description of how Locky operates is available in a separate analysis at WeLiveSecurity.com.
“ESET users are protected from this threat. Our solutions are able to block its malicious intent to download and execute various ransomware families”, comments Ondrej Kubovič, ESET IT Security Specialist.
JS/Danger.ScriptAttachment has the same intentions as the Nemucod downloader that hit the internet globally in several waves; ESET warned the public of the threat in late December, 2015, and again in March, 2015.
ESET considers ransomware one of the most dangerous computer threats at present, a fact that seems unlikely to change in the foreseeable future. Therefore, we recommend both private and corporate internet users keep their computers and software up to date, use reliable security software and regularly backup their valuable data.
The detection ratios span from 67% (Luxembourg) to under 1% (Belarus, Ukraine).
Prevalence levels:
Luxembourg: 67%
Austria: 57%
Netherlands: 54%
United Kingdom: 51%
Germany: 48%
Denmark: 48%
Ireland 46%
Sweden: 46%
Belgium: 45 %
Greece 43%
Spain: 42%
Finland: 42%
Norway: 40%
France: 36%
Portugal: 30%
Poland: 26%
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Experts Insight On US Pipeline Shut After Cyberattack
Most Active Commenters
Recent Comments
“Cybersecurity Awareness Month’s new evergreen theme "Secure Our World” is…
“Avoid storing data on personal devices: A crucial but often overlooked…
“I recommend a new nuance to passwords that isn’t often…
“In my role overseeing cloud environments and incident response, I'm…
“Cybersecurity Awareness Month serves as a reminder to confront the…