FireEye researchers James Wyke and Jeremy Kennelly say these ransomware campaigns have been accompanied with multi-million-dollar ransom amounts. The techniques used were first reported by FireEye in April 2018. The threat actors’ ultimate goal in some of these episodes was to ransom systems in mass with BitPaymer or DoppelPaymer ransomware. The original campaign (named FakeUpdates) used ompromised websites to deliver Trojan droppers masquerading as Chrome, Internet Explorer, Opera and/or Firefox browser updates.”]