Is Ransomware capable of encrypting the whole hard disk?

_CyberGhosT_

_CyberGhosT_

Level 53
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Aug 2, 2015
4,286
Hanmin147 said:
Also it would be counter productive for malware to encrypt the entire disk because how would the user get online to pay the hacker? Some malware out in the wild now do destroy files or disrupt a machine's boot up like Petya and JIGSAW but these are more rare just because of what an inconvenience it might be for the user if they actually want to pay for the decryption key
Click to expand...
Hanmin147 is correct. It's does not need to, it only needs to attack a small portion to have maximum effect. It would be wasteful for it to encrypt it all when it does not need to, to accomplish it's goal.
Good question though.
PeAcE
 
  • Like
Reactions: Logethica
Zerion

Zerion

Level 4
Verified
Well-known
Mar 2, 2016
151
But it's only the Windows partition? So all other disks are safe?
 
H

hjlbx

Zerion said:
But it's only the Windows partition? So all other disks are safe?
Click to expand...

No. There are ransomware that will encrypt all partitions and connected drives - including un-mapped network shares.

You can use ACL (Access Control List) to protect files, folders, partitions and drives - but it is much more simple just to disconnect external drives - and above all else - don't execute unknown\untrusted files. There's more to it that than, but it is the most basic things...
 
  • Like
Reactions: Logethica, DardiM and Wave
DardiM

DardiM

Level 26
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
May 14, 2016
1,597
Zerion said:
Ouch, RIP 8TB if that happens, such a sick virus.
Click to expand...
When a ransomware is looping to encrypt as many data, if you are in front of you PC, it's not to hard to detected it (too many Drive access, for example).
It's like driving a car, your can hear abnormal activities (but this is not an anti-ransomware tool :(, and doesn't protect well, lol)
 
Last edited:
  • Like
Reactions: Logethica
jamescv7

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
The answer is yes, Ransomware like PETYA manage to encrypt the MBR which considered to encrypt everything.

As also mentioned, even network drives can also be affected; however majority where mostly .exe, documents files, image files, video files and few others are their main target for encryption so overall you are infected with partial files on hostage.
 
  • Like
Reactions: Captain Awesome and DardiM
You must log in or register to reply here.

Similar threads

Brownie2019
    • Like
Unlimited Giveaway Ashampoo Backup Pro 25 - 10€
Replies
0
Views
203
Giveaways, Promotions and Contests
Brownie2019
Brownie2019
A
    • Like
Serious Discussion Some sugerence for antivirus or security software
Replies
18
Views
890
General Security Discussions
simmerskool
simmerskool
Gandalf_The_Grey
    • Like
    • +Reputation
Malware News The Week in Ransomware - April 5th 2024 - Virtual Machines under Attack
Replies
0
Views
1,191
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top