Strange ransomware detection only attacks the rich
Recently, security researchers have discovered a new ransomware that works differently from other extortion malware software.
CrowdStrike and FireEye, two security companies that discovered the malware, said that since August 2018, it has earned more than $ 4 million in data encryption and extortion.
Other ransomware often spread to all victims if possible, but the new ransomware is different, it selectively infects. Specifically, Ryuk ransomware only infects large businesses, based on a security vulnerability created by another malicious software called Trickbot created earlier. Meanwhile, Ryuk does not attack small companies that are also infected with Trickbot.
CrowdStrike calls Ryuk's attack method 'big-game hunting', the target of attack is large companies and businesses.
Based on Trickbot, Ryuk will explore the system of objects to attack to understand their resources and ability to pay a huge ransom. In order for these companies to fail, the malware will not rush to attack immediately, but will conduct the most important system reconnaissance, then finally make a large-scale attack.
Currently, CrowdStrike and FireEye experts have found some evidence that Ryuk has some connection with Russia.
See more:
- 14 games on the App Store contain malicious code, iPhone users be careful
- 1.6 million computers in Vietnam were erased by the virus, losing nearly 15,000 billion in 2018
- Warning: New extortion code GandCrab is attacking Vietnamese Internet users
You should read it
- What is Ransomware Ryuk? How to prevent it?
- Ryuk Ransomware has added 'selective' encryption capabilities.
- Ryuk Ransomware stops encrypting Linux directory
- STOP - Ransomware is the most active in the Internet but rarely talked about
- Disable malicious HiddenTear Ransomware with HT Brute Forcer
- Research: The golden time to prevent malicious code after the system is compromised
- Risk of ransomware infection when downloading crack software online
- Another large Data Center service provider became a victim of ransomware
- Mexico's largest oil and gas corporation has been attacked by ransomware, presenting a cyber security disaster
- List of the 3 most dangerous and scary Ransomware viruses
- How to use Acronis Ransomware Protection against ransomware
- How to kill virus automatically delete Unikey, Vietkey, Zalo on the computer
Maybe you are interested
390,000 WordPress Accounts Stolen in Large-Scale Attack
New Microsoft 365 Attack Can Break 2FA
Code Tam Quoc Counterattack VNG receive KNB, FREE Orange General
Warning of new dangerous malware attack campaign targeting Linux
Cloudflare Withstands Record-Breaking 3.8 Tbps DDoS Attack With Automated Protection
What order should I watch Attack on Titan?