Privacy News Web host agrees to pay $1m after it’s hit by Linux-targeting ransomware

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
...some quotes from the article above:

The South Korean Web host, Nayana, said in a blog post published last week that initial ransom demands were for five billion won worth of Bitcoin, which is roughly $4.4 million. Company negotiators later managed to get the fee lowered to 1.8 billion won and ultimately landed a further reduction to 1.2 billion won, or just over $1 million. An update posted Saturday said Nayana engineers were in the process of recovering the data. The post cautioned that that the recovery was difficult and would take time.
Click to expand...

The ransomware behind what may be a record payout is known as Erebus. Once targeting only computers running Microsoft Windows operating systems, Erebus was recently modified so that a variant will work against Linux systems. How Erebus managed to get installed on the Nayana servers is not clear, but given the woefully unpatched software the Web hosting service appeared to run, it’s possible the attackers exploited a well-known vulnerability.
Click to expand...
 
  • Like
Reactions: Winter Soldier, AtlBo, Der.Reisende and 4 others
Korea

Korea

Level 1
Verified
Jan 11, 2017
20
Eventually, the incident happened.
Armada Collective hacker group requested bitcoin before DDoS attack on Bank of Korea.

The deadline is June 26 or 28.
Seven banks have received blackmail emails. :(
 
Last edited:
  • Like
Reactions: brambedkar59 and AtlBo
Korea

Korea

Level 1
Verified
Jan 11, 2017
20
Lockdown said:
@Korea

Can you show us a guide on how to get the freeware home-use version of DiskShot ?

코보스 디스크샷™ 제품 사이트

There was\is a lot of interest in this product.

Many of us tried to register on the website for the non-commercial version, but no one was able to succeed.
Click to expand...


DiskShot products must receive a public key after signing up.
That way, you can use it.

Membership Link
디스쿨 (Diskool)

Download link
http://www.diskshot.com/ds/?f=Ds@Home-x86
http://www.diskshot.com/ds/?f=Ds@Home-x64

After login
Just click My license and use the key.

Although not sure, DiskShot only protects C drive from Ransomware.


In addition, there is anti-Ransomware product which is unknown to foreign countries.
This program will determine if the virtual environment is Ransomware when you download the file from the Internet. But it is not very popular in Korea.
안랩 안티랜섬웨어 툴 | AhnLab
http://provide.ahnlab.com/antiransomwaretool/beta/download/Setup.exe

In addition, many anti-ransomware products are now being produced in Korea. But AppCheck is still the most famous.
 
Last edited:
  • Like
Reactions: AtlBo and frogboy
5

509322

Korea said:
DiskShot products must receive a public key after signing up.
That way, you can use it.

Membership Link
디스쿨 (Diskool)

Download link
http://www.diskshot.com/ds/?f=Ds@Home-x86
http://www.diskshot.com/ds/?f=Ds@Home-x64

But I recommend Shadow Defender.
Although not sure, DiskShot only protects C drive from Ransomware.


In addition, there is anti-Ransomware product which is unknown to foreign countries.
This program will determine if the virtual environment is Ransomware when you download the file from the Internet. But it is not very popular in Korea.
안랩 안티랜섬웨어 툴 | AhnLab
http://provide.ahnlab.com/antiransomwaretool/beta/download/Setup.exe

In addition, many anti-ransomware products are now being produced in Korea. But AppCheck is still the most famous.
Click to expand...

Thanks for your reply. I hate to post my questions here in this particular thread since it is completely off-topic but wanted to get your attention.

The problem is that users with non-Korean keyboards cannot register to obtain the license using non-Korean email addresses.

There is no option to virtualize all connected drives in DiskShot ?
 
  • Like
Reactions: ravi prakash saini and AtlBo
Korea

Korea

Level 1
Verified
Jan 11, 2017
20
Lockdown said:
Thanks for your reply. I hate to post my questions here in this particular thread since it is completely off-topic but wanted to get your attention.

The problem is that users with non-Korean keyboards cannot register to obtain the license using non-Korean email addresses.

There is no option to virtualize all connected drives in DiskShot ?
Click to expand...

Can you tell me your email address?
I will ask the diskshot developer.
If you accept, we will send you a license key by email.

And I have not used DiskShot, so I do not know the virtualization part.
 
Last edited:
You must log in or register to reply here.

Similar threads

Trident
    • Like
    • +Reputation
    • Hundred Points
Serious Discussion Harmony Endpoint by Check Point
Replies
685
Views
59,011
Other security for Windows, Mac, Linux
simmerskool
simmerskool
Bot
Web Hosting Company Pays $1 Million to Hackers Following Ransomware Infection
Replies
1
Views
1,209
News Archive
frogboy
frogboy
DDE_Server
    • Like
How ransomware spreads: 9 most common infection methods and how to stop them
Replies
0
Views
1,984
Emsisoft
DDE_Server
DDE_Server

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top