Cyber-attack Ransomware across the globe that control of computers until the victims pay a ransom

Cyber-attack Ransomware across the globe that control of computers until the victims pay a ransom


Ransomware targeted over 45,000 computers in 74 countries, including United States, Russia, Germany, Turkey, Italy, Philippines and Vietnam, and that the number was still growing, according to Kaspersky Labs.

Once infected with the WannaCry ransomware, victims are asked to pay up to $300 in order to remove the infection from their PCs; otherwise, their PCs render unusable, and their files remain locked.

Researchers have also discovered a massive malicious email campaign that's spreading theJaff ransomware at the rate of 5 million emails per hour and hitting computers across the globe.

The ransomware, a variant of WannaCry, infects the machine by encrypting all its files and, using the vulnerability MS17-010 using EternalBlue that allows the execution of remote commands through Samba (SMB) and is distributed to other Windows machines in That same network.

The exploit has the capability to penetrate into machines running unpatched version of Windows XP through 2008 R2 by exploiting flaws in Microsoft Windows SMB Server. This is why WannaCry campaign is spreading at an astonishing pace.

"This particular ransomware contains a vulnerability, called Eternal Blue, which was developed in U.S. intelligence circles and was then stolen. That gives you an idea about why the level is risk is particularly high. The aim isn't to hit any specific country but to strike as widely as possible to make money."

Ransomware infect those of files and format windows version encrypted the extensions files bellow 
The file extensions that the malware is targeting contain certain clusters of formats including:

Commonly used office file extensions (.ppt, .doc, .docx, .xlsx, .sxi).
Less common and nation-specific office formats (.sxw, .odt, .hwp).
Archives, media files (.zip, .rar, .tar, .bz2, .mp4, .mkv)
Emails and email databases (.eml, .msg, .ost, .pst, .edb).
Database files (.sql, .accdb, .mdb, .dbf, .odb, .myd).
Developers’ sourcecode and project files (.php, .java, .cpp, .pas, .asm).
Encryption keys and certificates (.key, .pfx, .pem, .p12, .csr, .gpg, .aes).
Graphic designers, artists and photographers files (.vsd, .odg, .raw, .nef, .svg, .psd).

Virtual machine files (.vmx, .vmdk, .vdi).

Share this

Related Posts

Previous
Next Post »