Tuesday November 19, 2019
Home Lead Story New Encryptio...

New Encryption Ransomware that Exploits Windows Vulnerability Identified

The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group

0
//
cybersecurity
In India, the average cost of data breach grew 7.29 per cent year-over-year to reach Rs 12.8 crore from Rs 11.9 crore last year, said a new study by IBM. Pixabay

Researchers at cybersecurity firm Kaspersky have uncovered new encryption ransomware named Sodin which exploits a recently discovered Windows vulnerability to get elevated privileges in an infected system. The ransomware takes advantage of the architecture of the central processing unit (CPU) to avoid detection – functionality that is not often seen in ransomware.

“Ransomware is a very popular type of malware, yet it’s not often that we see such an elaborate and sophisticated version: using the CPU architecture to fly under the radar is not a common practice for encryptors,” said Fedor Sinitsyn, a security researcher at Kaspersky.

“We expect a rise in the number of attacks involving the Sodin encryptor, since the amount of resources that are required to build such malware is significant. Those who invested in the malware’s development definitely expect if to pay off handsomely,” Sinitsyn added.

ransomware
The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group. Pixabay

The researchers found that most targets of Sodin ransomware were found in the Asian region: 17.6 per cent of attacks have been detected in Taiwan, 9.8 per cent in Hong Kong and 8.8 per cent in the Republic of Korea.

ALSO READ: Microsoft Virtual Keyboard App SwiftKey Now Allow Users to Send 3D Animated Animal Emojis

However, attacks have also been observed in Europe, North America and Latin America, Kaspersky said, adding that the note left on infected PCs demands $2500 worth of Bitcoin from each victim. The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group. The vulnerability was patched on October 10, 2018, Kaspersky said.

To avoid falling victim to Sodin threats, make sure that the software used in your company is regularly updated to the most recent versions, said Kaspersky researchers. Security products with vulnerability assessment and patch management capabilities may help to automate these processes, they added. (IANS)

Next Story

Microsoft to Unveil November Update of Windows 10

Those looking to install the update can open their Windows Update settings and select Check for updates

0
Microsoft
The Microsoft Windows update is available for users seeking to install the latest release. Pixabay

Microsoft has begun rolling out its latest Windows 10 November 2019 Update to compatible devices.

It is pertinent to note that unlike most of the company’s significant Windows 10 updates, this update is more like the service packs found with previous versions of Windows operating system (OS).

“Today, we are announcing that the Windows 10 November 2019 Update is now available for users on the most recent versions of Windows 10 who seek the new update via Windows Update,” John Cable, Director of Program Management, Windows Servicing and Delivery, wrote in a blog post on Tuesday.

“We have worked to make this a great experience for all devices, and an exceptionally fast update process for devices running the May 2019 Update,” Cable added.

Microsoft
Microsoft has begun rolling out its latest Windows 10 November 2019 Update to compatible devices. Pixabay

The Windows update is available for users seeking to install the latest release.

Those looking to install the update can open their Windows Update settings (Settings > Update & Security > Windows Update) and select Check for updates.

ALSO READ: Use These Tools to Calculate Your Crypto Tax

After the update appears, they can select Download and install now option. (IANS)