New wave of Ransomware on the move

Discussion in 'News' started by dylan4, Jun 27, 2017.

  1. dylan4

    dylan4 VIP VIP

    New wave of Ransomware on the move


    [​IMG]


    A global WannaCry-like ransomware outbreak–which began in Russia and Ukraine and spread across Europe–is being reported today. The attack is locking down networks in a number of industries, including energy, transportation, shipping and financial.


    Reports suggest that ransomware is similar in scope and intensity to WannaCry and could be spreading using the same leaked NSA EternalBlue exploit that WannaCry used in early May to infect machines in more than 150 countries.


    [​IMG]


    Security experts are still trying to determine what type of ransomware is being distributed. Early theories pointed at Petya while others say the ransomware may be a new strain yet to be identified.


    Kaspersky Lab malware analyst Vyacheslav Zakorzhevsky said infections were traced to a “new ransomware we haven’t seen before.”


    Matt Suiche, founder of cyber security firm Comae Technologies, said he saw evidence of infections through SMB, the same vector used by EternalBlue and the accompanying DoublePulsar rootkit; the vulnerability was patched in March by Microsoft in MS17-010.


    The impact of the attacks are difficult to quantify as they continue. However, Danish transport and energy company Maersk is reporting on its website: “We can confirm that Maersk IT systems are down across multiple sites and business units due to a cyber attack.”


    Russian oil producer Rosneft said that it has been hit with a “powerful” cyberattack.


    Reuters is reporting that the Ukrainian central bank has also been hit by a similar cyberattack along with several other financial institutions.


    “As a result of these cyber attacks these banks are having difficulties with client services and carrying out banking operations,” the central bank said in a statement, according to the Reuters report.


    Ukrainian officials tweeted images of infected computers at the state-owned Ukrenergo and Kyivenergo power companies. The ransom note reads: “We guarantee that you can recover all your files safely and easily. All you need to do is submit the payment and purchase the decryption key.” Based on current value of bitcoins, the ransom is approximately $300.


    Meanwhile, the Facebook page of Kiev’s Borispol Airport posted a statement: “Our IT services are working together to resolve the situation. There may be delays in flights due to the situation… The official Site of the airport and the flight schedules are not working.”


    More Info:


    Second Global Ransomware Outbreak Under Way


    Complex Petya-Like Ransomware Outbreak Worse than WannaCry
     
    Fenix_Cracks, crackhex and Serph like this.
  2. monstertruck

    monstertruck Spaniard Moderator Moderator

    Hahaha these piece of pink shit letters TN monitor.


    The reason for ransomware is a computer poorly protected, And people with bad surfing habits. They clicking on any link or executable on the screen. They still don't know about "ublockorigin" with all their filters
     
    Fenix_Cracks, dylan4 and crackhex like this.
  3. crackhex

    crackhex Administrator Administrator Moderator Member

    ya people should aware of this shits, thanks for the info @monstertruck
     
    Fenix_Cracks and monstertruck like this.
  4. monstertruck

    monstertruck Spaniard Moderator Moderator

    prevent ransomware editing the hosts blocking the remote infected websites with the batch lists.


    for example:


    [​IMG]


     [​IMG]


    I use it on windows 7.





     





    u're welcome buddy
     
    Fenix_Cracks likes this.
  5. monstertruck

    monstertruck Spaniard Moderator Moderator

    open the links or click on add button to Integrate them into ublock origin.


    [​IMG]


    [​IMG]
     
    Fenix_Cracks likes this.
  6. crackhex

    crackhex Administrator Administrator Moderator Member

    I see browser is too slow now
     
    Fenix_Cracks likes this.
  7. monstertruck

    monstertruck Spaniard Moderator Moderator

    Hostman be to windows 7, in windows 10 give lack.


    ublock origin for windows 10, and work very fast.
     
    Fenix_Cracks likes this.
  8. monstertruck

    monstertruck Spaniard Moderator Moderator

    only problems windows 10! happening the same  in here on my PC.


    in windows 7 has not problems


    reason: windows 10 protecting the hosts:


    in win10,  there is a limit on the quantity that you can add. Is drowned after 5 mb on hosts.
     
    Fenix_Cracks likes this.