Linux version of RansomEXX ransomware discovered

Forums Security News (Security) Linux version of RansomEXX ransomware discovered

  • This topic is empty.
Viewing 0 reply threads
  • Author
    Posts
    • January 18, 2021 at 3:26 pm #51533
      Telegram SmartBoT
      Moderator
      • Topic 5959
      • Replies 0
      • posts 5959
        @tgsmartbot

        #News(Security) [ via IoTGroup ]


        Security firm Kaspersky said today that it discovered a Linux version of the RansomEXX ransomware marking the first time a major Windows ransomware strain has been ported to Linux to aid in targeted intrusions. RansomEXX is what security researchers call a “big-game hunter” or “human-operated ransomware.” These two terms are used to describe ransomware groups that hunt large targets in search for big paydays knowing that some companies or government agencies can’t afford to stay down while they recover their systems.

        These groups buy access or breach networks themselves expand access to as many systems as possible and then manually deploy their ransomware binary as a final payload to cripple as much of the target’s infrastructure as possible. Many ransomware gangs have realized that attacking workstations first isn’t a lucrative deal as companies will tend to re-image affected systems and move on without paying ransoms. In recent months in many incidents some ransomware gangs haven’t bothered encrypting workstations and have first and foremost targeted crucial servers inside a company’s network knowing that by taking down these systems first companies wouldn’t be able to access their centralized data troves even if workstations were unaffected. The RansomEXX gang creating a Linux version of their Windows ransomware is in tune with how many companies operate today with many firms running internal systems on Linux and not always on Windows Server. What we see from RansomEXX may soon turn out to be an industry-defining trend with other big ransomware groups rolling out their Linux versions in the future as well. According to cyber-security firm Emsisoft besides RansomEXX the Mespinoza (Pysa) ransomware gang has also recently developed a Linux variant from their initial Windows version. But Linux ransomware is also not unique. In the past years other ransomware gangs have created Linux ransomware strains as well such as the Snatch group. However those groups were

        Read More..
        AutoTextExtraction by Working BoT using SmartNews 1.03976805238 Build 04 April 2020

    • Author
      Posts
    Viewing 0 reply threads
    • You must be logged in to reply to this topic.