Since February 2022, Magniber has been using a Windows installer package file (.msi) instead of IE browser vulnerability for its distribution. Magniber Disguised as Normal Windows Installer (MSI) Being Redistributed (February 22nd) The ransomware includes a valid certificate and was distributed as DLL form inside the MSI file. However, starting from July 20th (Wednesday), it … Continue reading Change in Magniber Ransomware (*.msi → *.cpl) – July 20th