Ransomware news & analysis | SC Media

Ransomware

Petya ransomware reportedly spread via malicious software updates, Windows exploits and tools

The Petya ransomware attack that infected corporations around the world today may have originated from a malicious update for a Ukranian accounting software product called MeDoc, according to researchers. Additionally, the ransomware possibly leverages not one, but two former Microsoft Windows exploits that were employed by the National Security Agency (NSA) before they were leaked by…

Global Petya ransomware attack: Update 2

Petya ransomware continues to spread rapidly across the globe impacting multiple corporations and utilities and it has just been revealed that the attacker’s email address needed to pay the ransom has been shut down eliminating that possibility for any victim. The attack looks as if it may have started in Ukraine, where banks, energy companies,…

Expect ransomware to increasingly target back-up files, panelist warns

Ransomware attacks could one day evolve to increasingly target back-up files, one of the few effective tools security professionals managers have to remediate an infection, according to a panelist at the RiskSec Toronto 2017 conference this week. “They’re probably going to trigger this so that you can’t do a restore from your backups without… the encryption…

WannaCry: One month later

With one month of hindsight, and a lot of research, under the industry’s belt, analysts are still in the process of building a complete picture of the WannaCry ransomware attack that took the world by storm, but some points are firmed up. Tom Levasseur, CGI’s vulnerability assessment and penetration specialist, gave the attendees at SC…

Next post in Ransomware