Cybersecurity firm Group-IB says Shade was the most prevalent strain of malware it saw in the first half of 2019. Shade – also known as Troldesh, XTBL, TrojanEncoder.858 and Da Vinci – is easy to buy or rent and has continued to be upgraded. The most recent Shade campaigns show that it now does not just encrypt files, but also can mine cryptocurrency and generate phony traffic on websites to increase revenue from ad fraud. Another strain of ransomware called Cyborg has been distributed via fake Windows Update emails.”]
Source: https://www.bankinfosecurity.com/shade-ransomware-surges-unleashing-triple-play-attack-a-13424