[ad_1]
We have bad news and should be warned. Kaspersky Lab has warned against the existence of a new horse malware of the Rakhni family that is particularly dangerous because it is a dual threat: it determines whether your team is a candidate at the installation of a mining program to steal cryptocurrences; Remember that ransomware is a type of malware that blocks or encrypts the files of a computer so that the owner can not have access to malware.
RAMpage, the latest and dangerous Android vulnerability that you must know access to them and thereafter the payment of a deposit is requested to recover them. The truth is that this has made ransomware a lot of money for hackers and hackers, but it also depends on the type of equipment they can infect.
The variant of the Rakhni ransomware family was detected by researchers at Kaspersky Labs It is written in Delphi, a programming language that was created in order to speed up the creation of software based on visual programming .
Rakhni, currently he has spread to an unlimited number of devices, using the phishing of identity of phishing, sending fake emails with an attached MS Word file, which, if it is opened, asks the victim to save the document and edit it
. a PDF icon, which, if clicked, launches a malicious executable on the victim's computer and immediately displays a fake error message box when it is executed, deceiving the victims however At the bottom, the malware performs many anti-VM and anti-sandbox checks to decide if it could infect the system without being intercepted. If all the conditions are met, the malware performs more checks to determine the final charge of infection, ie. Ransomware or mining.
How does the malware decide?
It should be noted that before being launched, the malware performs many anti-VM (anti-VM) and anti-sandbox checks, techniques used by attackers to detect and escape environments virtual machines used in security badysis.
all the conditions are met, the malware performs more checks to decide the final charge of infection, that is, ransomware or mining.
How to protect yourself?
It is not enough to install an antivirus and forget about our security. It is important to be very careful not to open attachments or links in an email message that we do not know for sure who joins us. In addition, we must very well look in the e-mail address of the sender, because it can give us a lot of clues as to whether it is a legitimate message or not, and update the operating system correctly.
[ad_2]
Source link