A new Locky campaign infects victims via ransomware-laced spam messages as well as via fake Dropbox phishing pages. The campaign began Monday, according to cloud-based cybersecurity provider AppRiver, which counted more than 23 million related spam emails having been sent in less than 24 hours. The Lukitus variant of Locky was first spotted last month and is being distributed via email attachments as part of a massive spam campaign being run by the one of the world’s biggest botnets, Necurs, which has historically been the principle outlet for Locky attacks.”]
Source: https://www.cuinfosecurity.com/locky-returns-via-spam-dropbox-themed-phishing-attacks-a-10250