Be careful of Ransomware

There is a lot of ransomware activity that been happening lately around the world such as follows:

  • REvil Ransomware
  • Sodinokibi Ransomware
  • Nemty Ransomware
  • Nephilim Ransomware
  • NetWalker Ransomware
  • DoppelPaymer Ransomware
  • Ryuk Ransomware

According to Coveware Q3 2020 ransomware report, there is a report that the attacker that owner of the ransomware didn’t keep their promise to decrypt the file which affected.

Below are the ransomware group that been faked their process:

  • Sodinokibi: Victims that paid were re-extorted weeks later with threats to post the same data set.
  • Netwalker: Data posted of companies that had paid for it not to be leaked
  • Mespinoza: Data posted of companies that had paid for it not to be leaked
  • Conti: Fake files are shown as proof of deletion

Source: Coveware Q3 2020 ransomware report

Ransomware attack vectors: RDP compromise, email phishing, software vulnerability, and others.

Source: Coveware Q3 2020 ransomware report

Author: Wan Ariff

He brings with him working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

Leave a Reply

Your email address will not be published. Required fields are marked *