New COVID-19 Malware Variants Render Your Endpoints Useless



iStock-1090872318 (1)Forget cybercriminals out to steal your money and credentials. Security researchers are now finding more malware intent on rewriting master boot records and wiping file systems.

Organizations today don’t need another thing to worry about with the coronavirus. And yet, here it is! Security researcher Vitali Kremez discovered a new malware variant using COVID-19 as its theming has been seen that in some cases pretends – yes, pretends to be ransomware. It rewrites the endpoint’s MBR and upon bootup posts a message that the machine has been infected with ransomware.

With a little help from some bootup tools, it’s relatively easy to fix this and put the MBR back as it should, allowing the machine to boot normally.

But MalwareHunterTeam has spotted another variant in the wild in Italy that also looks to (albeit inefficiently) delete the files on an endpoint.

No idea why someone would go through such trouble to create destructive malware when there’s no monetization scheme. Whether a joke or intended for espionage, these kinds of malware can kill IT and user productivity, hurting the organization.

While these examples of malware are nowhere near as destructive as some of the other attacks we’ve seen recently, it’s still important to educate users to not click on attachments from unknown, unexpected, or unsolicited senders. Security Awareness Training can help minimize the human attack surface within an organization, reducing the likelihood that attacks and scams using social engineering can trick users into engaging with malicious content.


Ransomware Has Gone Nuclear, How Can You Avoid Becoming The Next Victim?

There is a reason more than half of today’s ransomware victims end up paying the ransom. Cyber-criminals have become thoughtful; taking time to maximize your organization’s potential damage and their payoff.

After achieving root access, the bad guys explore your network reading email, finding data troves and once they know you, they craft a plan to cause the most panic, pain, and operational disruption. Ransomware has gone nuclear.

GoneNuclear-WEBINARJoin us for this webinar where, Roger Grimes, KnowBe4’s Data-Driven Defense Evangelist, dives into:

  • Why data backups (even offline backups) won’t save you
  • Evolved threats from data-theft, credential leaks, and corporate impersonation
  • Why ransomware isn’t your real problem
  • How your end users can become your best, last line of defense

Watch Now

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://info.knowbe4.com/nuclear-ransomware

Subscribe To Our Blog


Ransomware Has Gone Nuclear Webinar




Get the latest about social engineering

Subscribe to CyberheistNews