Ransomware developers have continued to evolve the sophistication of their malware by utilizing several levels of encryption, using the online anonymizer Tor for command and control (C&C) communications, employing droppers that use multiple exploits to infect targeted systems, and including anti-vm and anti-emulation functionalities which obfuscate the malware when sandboxed.
Now it appears they are also shifting their tactics and targets, as security researchers have detected several instances where ransomware operators are specifically targeting businesses as opposed to individuals by infiltrating websites and encrypting databases and auxiliary data backups, dubbing the attacks “RansomWeb.”
“We are probably facing a new emerging threat for websites that may outshine defacements and DDoS attacks. RansomWeb attacks may cause unrepairable (sic) damage, they are very easy to cause and pretty difficult to prevent,” said Ilia Kolochenko.
“Days when hackers were attacking websites for glory or fun are over, now financial profit drives them. The era of web blackmailing, racket and chantage is about to start.”
To get content containing either thought or leadership enter:
To get content containing both thought and leadership enter:
To get content containing the expression thought leadership enter:
You can enter several keywords and you can refine them whenever you want. Our suggestion engine uses more signals but entering a few keywords here will rapidly give you great content to curate.
“We are probably facing a new emerging threat for websites that may outshine defacements and DDoS attacks. RansomWeb attacks may cause unrepairable (sic) damage, they are very easy to cause and pretty difficult to prevent,” said Ilia Kolochenko.
“Days when hackers were attacking websites for glory or fun are over, now financial profit drives them. The era of web blackmailing, racket and chantage is about to start.”
Learn more:
- http://www.scoop.it/t/securite-pc-et-internet/?tag=RANSOMWARE