Samme Cyber-Gang Bag Dridex, Locky og CryptoWall - Hvordan, Teknologi og pc-sikkerhed Forum | SensorsTechForum.com
TRUSSEL FJERNELSE

Samme Cyber-Gang Bag Dridex, Locky og CryptoWall

SensorsTechForum-bagdør Trojan-heste-malware-ransomware-spredningNyheder brød ud, at den samme bande, der står bag den ødelæggende Dridex banking malware også blev rapporteret at være bag andre meget berømte vira samt. Banden har i første omgang begyndt at distribuere CryptoWall, but this was just the beginning. Researchers claim that the cyber-criminals are also the same people who are behind Locky ransomware as well, according to Palo Alto Networks.

Den Locky ransomware is not just any other virus. It has now come up with a third ransomware variant with an .odin file extension and this devastating malware is also reported to cause infections on a massive scale (løbet 90 thousand per 24 timer). Ikke kun dette, but the ransom payoff price was also reported to be quite high – in the estimates of approximately 1 Bitcoin.

This cyber-gang behind Dridex, believed to be originating from Russia is most likely the biggest one at the moment. They have generated unimaginable profits up until this points and they have the resources to keep developing their ransomware viruses and spreading them massively.

Dridex malware spam was also reported by researchers at KnowBe4 to be sending out millions of malicious emails containing archived files (.zip, .rar) as e-mail attachments. These archives are the ones which have .js files and spread malware such as Locky.

Den Dridex trojan itself is actually an evolved version of another Trojan horse also known as the Cridex Trojan. Denne særlige form for malware blev primært skabt til at målrette bankkontooplysninger på inficerede computere og udtrække den til eksterne servere. Grunden til denne trojan blev så udbredt var, at det blev skjult i makroer af vigtige dokumenter såsom fakturaer, Bekræftelse Breve og andre.

The attacks by Dridex slowly declined since Microsoft has increased the security measures by disabling files that contain macros.

The bottom line for this is that the Dridex gang is a very well organized criminal ring and this may not be all to be seen from it. More threats from the gang are expected in the future, since it definitely has the capability of spreading them. Det er endnu ikke bekræftet, but the gang may focus on RaaS schemes since this will allow for other affiliates to take the risk while distributing their malware.

Ventsislav Krastev

Ventsislav har dækket de nyeste malware, software og nyeste tech udviklinger på SensorsTechForum for 3 år nu. Han startede som en netværksadministrator. Have uddannet Marketing samt, Ventsislav har også passion for opdagelsen af ​​nye skift og innovationer i cybersikkerhed, der bliver spillet skiftere. Efter at have studeret Value Chain Management og derefter Network Administration, han fandt sin passion inden cybersecrurity og er en stærk tilhænger af grunduddannelse for alle brugere mod online sikkerhed.

Flere indlæg - Websted

Efterlad en kommentar

Din e-mail-adresse vil ikke blive offentliggjort. Krævede felter er markeret *

Frist er opbrugt. Venligst genindlæse CAPTCHA.

Del på Facebook Del
Loading ...
Del på Twitter Tweet
Loading ...
Del på Google Plus Del
Loading ...
Del på Linkedin Del
Loading ...
Del på Digg Del
Del på Reddit Del
Loading ...
Del på Stumbleupon Del
Loading ...