Security News KillDisk ransomware demands over $215,000

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
...some quotes from the article above:

A malware family previously used to sabotage computers by deleting and rewriting files has added a ransomware component, now encrypting files and demanding a huge ransom.
Until now, the KillDisk malware family has been only associated with cyber-espionage and cyber-sabotage operations, most of which had been carried out in the industrial sector.

The group behind this malware is known under two names: Sandworm or TeleBots.

The Sandworm gang is known for its work on the Sandworm malware that targeted and sabotaged industrial control systems (ICS) and supervisory control and data acquisition (SCADA) industrial devices in the US in 2014.
Click to expand...

The KillDisk encryption system is also very robust, encrypting each file with its own AES key, and then encrypting the AES key with a public RSA-1028 key.
To unlock the files, the victim must contact the TeleBots gang via an email address, pay the ransom, and receive the private RSA key that decrypts all the files.
Click to expand...
 
  • Like
Reactions: Svoll, _CyberGhosT_, frogboy and 4 others
nclr11111

nclr11111

Level 6
Verified
Well-known
Feb 25, 2011
277
This scares the hell out of me thinking of all public hospitals etc with inadequate security and/or misconfigured firewalls. If one of those malwares finds it´s way in, then..... Even with backups the damage will be catastrophical until all is up and running again.
And my belief that some folks on IT-department has their heads up their arses doesn´t make me feel any better! :(

Sometimes i wonder what was wrong with paper and pencils.....
 
  • Like
Reactions: SKG2016, DardiM, Svoll and 4 others
Svoll

Svoll

Level 13
Verified
Top Poster
Well-known
Nov 17, 2016
627
In an utopia, we would have made so many great strives toward tech advancement!

In reality, we are battling each other for profit.

On the plus side, the future will hold many security experts and security developers. Gotta look at the bigger and better picture of things.
 
  • Like
Reactions: DardiM, nclr11111 and smokeyjoe
jamescv7

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
This is the most expensive ransom price I've ever encountered, definitely the system should be at limited user account to prevent it to avoid massive damage.

I.T personnel should properly implement strong security measures and avoid traditional AV concept.
 
  • Like
Reactions: _CyberGhosT_
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • +Reputation
    • Like
    • Thanks
Malware News Ransomware gang targets IT workers with new SharpRhino malware
Replies
0
Views
2,233
Security News
Gandalf_The_Grey
Gandalf_The_Grey
[correlate]
    • Like
    • +Reputation
Security News Ransomware gang deploys new malware to kill security software
Replies
0
Views
1,578
Security News
[correlate]
[correlate]
Gandalf_The_Grey
    • +Reputation
    • Like
Malware News Surge in Magniber ransomware attacks impact home users worldwide
Replies
2
Views
2,496
Security News
Jonny Quest
Jonny Quest

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top