Warning: These 3 dangerous ransomware could explode all over the world, 1800 large enterprises were 'shot'.
The Netherlands National Cyber Security Center (NCSC) has issued an emergency report, warning of three ransomware strains that are storming around the world, and will likely explode in the near future with at least 1,800 businesses have been infected so far (these are reported cases, the actual level may be significantly larger).
Notably, all three ransomware strains use the same digital infrastructure and carry the most basic, typical features of a ransomware.
Many large businesses became victims
The number of 1800 businesses affected by the three ransomware strains that NCSC does not seem to fully reflect the dangers and the actual operation of these malware, because many attacks have not been reported. Report, along with the fact that most businesses are trying to find a way to recover the system after a problem by recovering data from an unprocessed backup, or simply paying back the data. is encrypted.
The NCSC did not specify the names of affected companies in the report, but said the malicious code affected all sectors, especially the automotive, construction, chemical, health, and real industries industries. products and entertainment, with damage estimated at billions of dollars.
3 dangerous ransomware strains
The three ransomware strains mentioned by NCSC are names that are no stranger to global security researchers, or enterprise security teams: LockerGoga, MegaCortex and Ryuk.
The fact that all three ransomware software are based on the same infrastructure shows that hacker groups are trying to orchestrate attacks using access to the corporate network they have.
There are many ways to gain access to this access, most hacker groups will choose to bribe (profit share) to a member of the system. If not, they will try to take control of the computer of a key person in the company to gain access to the intranet.
However, being infected with ransomware is still not the worst part that businesses have to face when being a victim of an attack. There are cases where file encryption begins with filtering data, which can then be sold to other cybercrime organizations to commit vandalism, or even to companies. opponent, resulting in serious damage.
You should read it
- PureLocker - a very 'weird' ransomware strain that can encrypt servers
- Another large Data Center service provider became a victim of ransomware
- Security recommendations from the FBI in response to LockerGoga and MegaCortex malware
- Ako ransomware is raging all over the world, what do you know about this ransomware?
- What is Ransomware Ryuk? How to prevent it?
- Ransomware (ransomware) is showing signs of explosion worldwide, paying is no longer the most effective option.
- List of the 3 most dangerous and scary Ransomware viruses
- Even DSLR cameras can be easily attacked by ransomware
- 7 kinds of ransomware you didn't expect
- Forecast 2021: The world of security will be devastated by ransomware '
- Ryuk Ransomware has added 'selective' encryption capabilities.
- WannaCry remains one of the most dangerous global security threats
Maybe you are interested
Dangerous 'Helldown' Ransomware Warning Expands to Linux and VMware
Detecting a new ransomware strain that specializes in stealing login information from the Chrome browser
What is extortionware? How is it different from Ransomware?
New ransomware appears attacking Windows operating system
Difference between Cyber Extortion and Ransomware
How to enable ransomware restrictions on Windows