SME Times is powered by   
Search News
Just in:   • Adani Group to invest Rs 57,575 crore in Odisha  • 'Dollar Distancing' finally happening? Time for India to pitch Rupee as credible alternative: SBI Ecowrap  • 49% Indian startups now from tier 2, 3 cities: Jitendra Singh  • 'India ranks 3rd in global startup ecosystem & number of unicorns'  • LinkedIn lays off entire global events marketing team: Report 
Last updated: 18 Aug, 2017  

PC.Thmb.jpg Return of 'Mamba' ransomware raises concern in India, globally

PC.9.Jpg
   Top Stories
» 49% Indian startups now from tier 2, 3 cities: Jitendra Singh
» 'India ranks 3rd in global startup ecosystem & number of unicorns'
» Tripura exported over 9K tonnes of pineapples in 2 years
» CPI inflation eases to 6.71% in July, IIP falls to 12.3%
» Rupee depreciates 12 paise to close at 79.64 against US dollar
SME Times News Bureau | 18 Aug, 2017
A variant of the notorious disk-encrypting ransomware -- detected as 'Mamba ransomware that hit organisations last year -- has made a comeback globally, including in India, media reported.

Cyber security firms like Kaspersky Labs and Trend Micro have confirmed the rise of 'Mamba' this year.

How many Indian firms were hit is yet to be confirmed.

The ransomware, also known as 'HDDCryptor', is notorious for encrypting hard drives instead of just files.

Its return comes after researchers suggested that the ransomware designed for destruction, rather than extorting a Bitcoin ransom for profit, is set to become the new normal.

"Analysis on a sample of 62,000 emails linked to the ‘IKARUSdilapidated' campaign by Comodo Threat Intelligence Lab revealed a sophisticated adversary utilising 11,625 different IP addresses spread across 133 different countries like Vietnam, India, Mexico, Turkey and Indonesia," ThreatPost reported on Thursday.

The behaviour of the ransomware is similar to families like ‘Crysis' and ‘Erebus Linux' ransomware that leveraged exploits to gain unauthorised administrator-level access to machines.

"If an organisation wants to safeguard its digital assets, create a discipline around backups and take them offline for storage," said Ankush Johar, Director at HumanFirewall.io, a security solutions provider.

'Mamba' had primarily affected some organisations in Brazil and specifically, San Francisco Municipal Transportation Agency last November.

'Mamba' ransomware mostly targets big organisations and governmental bodies.

It is seen to be spreading as an "exe" file with a numeric name like 141.exe. This file generally is delivered via hacked websites a victim might visit or an already compromised network.
 
Print the Page Add to Favorite
 
Share this on :
 

Please comment on this story:
 
Subject :
Message:
(Maximum 1500 characters)  Characters left 1500
Your name:
 

 
  Customs Exchange Rates
Currency Import Export
US Dollar
66.20
64.50
UK Pound
87.50
84.65
Euro
78.25
75.65
Japanese Yen 58.85 56.85
As on 13 Aug, 2022
  Daily Poll
PM Modi's recent US visit to redefine India-US bilateral relations
 Yes
 No
 Can't say
  Commented Stories
» GIC Re's revenue from obligatory cession threatened(1)
 
 
About Us  |   Advertise with Us  
  Useful Links  |   Terms and Conditions  |   Disclaimer  |   Contact Us  
Follow Us : Facebook Twitter