Thursday July 18, 2019
Home Lead Story New Encryptio...

New Encryption Ransomware that Exploits Windows Vulnerability Identified

The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group

0
//
ransomware
The ransomware takes advantage of the architecture of the central processing unit (CPU) to avoid detection - functionality that is not often seen in ransomware. Pixabay

Researchers at cybersecurity firm Kaspersky have uncovered new encryption ransomware named Sodin which exploits a recently discovered Windows vulnerability to get elevated privileges in an infected system. The ransomware takes advantage of the architecture of the central processing unit (CPU) to avoid detection – functionality that is not often seen in ransomware.

“Ransomware is a very popular type of malware, yet it’s not often that we see such an elaborate and sophisticated version: using the CPU architecture to fly under the radar is not a common practice for encryptors,” said Fedor Sinitsyn, a security researcher at Kaspersky.

“We expect a rise in the number of attacks involving the Sodin encryptor, since the amount of resources that are required to build such malware is significant. Those who invested in the malware’s development definitely expect if to pay off handsomely,” Sinitsyn added.

ransomware
The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group. Pixabay

The researchers found that most targets of Sodin ransomware were found in the Asian region: 17.6 per cent of attacks have been detected in Taiwan, 9.8 per cent in Hong Kong and 8.8 per cent in the Republic of Korea.

ALSO READ: Microsoft Virtual Keyboard App SwiftKey Now Allow Users to Send 3D Animated Animal Emojis

However, attacks have also been observed in Europe, North America and Latin America, Kaspersky said, adding that the note left on infected PCs demands $2500 worth of Bitcoin from each victim. The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group. The vulnerability was patched on October 10, 2018, Kaspersky said.

To avoid falling victim to Sodin threats, make sure that the software used in your company is regularly updated to the most recent versions, said Kaspersky researchers. Security products with vulnerability assessment and patch management capabilities may help to automate these processes, they added. (IANS)

Next Story

Microsoft Teases a Nostalgic Throwback to 1985, When Windows 1.0 Debuted

Twitter users was quick to decode the Morse code and expressed their excitement in the comments section

0
Microsoft, Throwback, Windows
The software company began cryptically teasing Windows 1.0 from earlier this month and the latest tease on the Windows handle confirms that it's indeed a Netflix / 'Stranger Things' tie-in. Pixabay

As part of a mystery tie-in with a Netflix show “Stranger Things”, software giant Microsoft has been teasing a nostalgic throwback to 1985, 33 years ago when Windows 1.0 debuted.

“The software company began cryptically teasing Windows 1.0 from earlier this month and the latest tease on the Windows handle confirms that it’s indeed a Netflix / ‘Stranger Things’ tie-in, one that we should expect to come to fruition on July 8,” The Verge reported on Friday.

“Before we move forward, are you sure you’re ready to go know where? .— ..- .-.. -.– / —.. ,” Windows tweeted with a Morse code.

Twitter users was quick to decode the Morse code and expressed their excitement in the comments section.

Microsoft, Throwback, Windows
As part of a mystery tie-in with a Netflix show “Stranger Things”, software giant Microsoft has been teasing a nostalgic throwback to 1985. Pixabay

“Oh my, this takes me back to being a kid learning about Morse code. Super cool! I can’t wait! Love ‘Stranger Things’,” a user commented.

However, since the new season of ‘Stranger Things’ does not feature any Microsoft or Windows product, people are still confused if there is something else they should be waiting for.

“What’s odd is that there is not a single scene in ‘Stranger Things’ that features or mentions Windows 1.0. Not even in the background, as far as I saw anyway. Why do a product tie-in without the product? A sponsored minisode (or something) on July 8th, maybe?” wrote a user.

People seem to be waiting eagerly now to see what happens on July 8.

Also Read- India: Asiatic Lions in Gujarat’s Gir forests to Have Radio Collars Fitted Around their Necks

“OMG! What is going to happen next? What is even happening? I can’t wait. But I have to. OMG why?” a tweet read. (IANS)