The StopCrypt ransomware, also known as STOP Djvu, has been upgraded with a new multi-stage execution process to better circumvent detection by security systems.
Windows tool helps RedCurl obscure cyberespionage attacks
Malicious .ISO and .IMG attachments within phishing emails delivered by RedCurl trigger a multi-stage attack that runs an executable to enable curl utility downloading and loader delivery.