Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
New Phobos ransomware exploits weak security to hit targets around the world
#1
Quote:Ransomware strain has many similarities with one of the most damaging ransomware families.

A prolific cybercrime gang behind a series of ransomware attacks is distributing a new form of the file-encrypting malware which combines two well known and successful variants in a series of attacks against businesses around the world.

Dubbed Phobos by its creators, the ransomware first emerged in December and researchers at CoveWarehave detailed how it shares a number of similarities with Dharma ransomware.

Like Dharma, Phobos exploits open or poorly secured RDP ports to sneak inside networks and execute a ransomware attack, encrypting files and demands a ransom to be paid in bitcoin for returning the files, which in this case are locked with a .phobos extension.
The demand is made in a ransom note – and aside from 'Phobos' logos being added to the ransom note, it's exactly the same as the note used by Dharma, with the same typeface and text use throughout.
...
...
However, Phobos also contains elements of CrySiS ransomware – also related to Dharma - with anti-virus software detecting Phobos as CrySiS. The ransomware's file markers also differentiate it from Dharma – however, the attack methods and threat remains the same.

https://www.zdnet.com/article/new-phobos...the-world/
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  (Bitdefender ) 2024 Cybersecurity Forecast: Ransomware's New Tactics and Targets mrtrout 0 841 01-05-2024 , 08:49 PM
Last Post: mrtrout
  Digital security giant Entrust breached by ransomware gang mrtrout 0 647 07-23-2022 , 12:02 AM
Last Post: mrtrout
  Mozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network Gateways mrtrout 0 823 08-21-2021 , 10:35 PM
Last Post: mrtrout
  Active Exploits Hit WordPress Sites Vulnerable to Thrive Themes Flaws Bjyda 0 864 03-28-2021 , 12:06 PM
Last Post: Bjyda
  Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices Bjyda 0 916 03-17-2021 , 04:27 PM
Last Post: Bjyda

Forum Jump:


Users browsing this thread: 1 Guest(s)