Vietnam Struck by a Ransomware Attack infecting around 4000 Computers
As per Whitehat Security Forum, the malicious code that is spreading in Vietnam is the fifth generation version of the GandCrab new-generation malware. The first version of the GandCrab new-generation malware was discovered by the world for the first time in the month of January this year (2018). The GandCrab new-generation malware is being constantly upgraded since then with new and latest features by the hackers in order to avoid detection and for harder encryption. The first four variants of the malware are already in use.
With around 4,000 computers already infected in Vietnam, this encryption software can spread on Internet in the Vietnam. A fake email is sent to the victim by the cyber criminals to spread this GandCrab ransomware. The hacker asks the victim to open a text file attachment with the email. That attachment is actually the carrier of GandCrab; and the moment the receiver opens the text file attachment, their computer got infected by the malicious code. Thus each and every data of the computer got encrypted, and as a result cannot be opened.
Soon after a ransom notice appears on the victim's computer screen. The ransom notice asks victim to install Tor browser, and also pay a ransom amount depending on number of files that were encrypted. Thus, the ransom amount can be anything between US$ 200 and US$ 1,200 depending on encrypted files. One of the top-notch tech software corporation, Bkav, has confirmed that no victim has paid ransom money yet.
The security experts have recommended to all computer users to avoid opening any kind of attachment from the sources not known. They have also instructed the computer users to install antivirus software in their personal computers. The security experts further recommend the computer users that if in any case they have to open the files, then they should open the same through Safe Run software of Bkav.
The Bkav Safe Run segregates the system into two zones - one, safe zones that is called Green Zone; and the other one is the control area called the Gray Zone. The mechanism diverted all the dangerous effects from Green Zone to Gray Zone for the control. Because of this, even if any user by mistake opens web page containing a malicious code or a virus file they remain unharmed.
» SPAMfighter News - 12/31/2018
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!