Zeppelin Ransomware Returns Using New Trojan to Evade Antivirus
The Zeppelin ransomware variant has reemerged in the wild, employing a new trojan downloader to evade antivirus applications and avoid detection, according to new Juniper Threat Labs research.
Blackberry Cylance researchers first observed Zeppelin in November 2019, in a wave of targeted, carefully selected cyberattacks against technology and healthcare sectors across the US and Europe. The variant was the latest member of the Delphi-based ransomware-as-a-service family known as Vega or VegaLocker – thought to be Russian in origin.
The variant uses obfuscation on...