![]() ![]() Once the network is infected, the attackers wipe their traces clean and contact the victim with a decryption offer. Last year, some GandCrab affiliates began attacking organisations via exposed remote desktop protocol (RDP) instances, or by directly logging in with stolen domain credentials.Īfter authenticating on a compromised PC, attackers typically run the ransomware manually and instruct it to spread across the entire network. The ransomware is a favourite among cyber criminals and is believed to have helped them extort hundreds of millions of dollars in ransom payments in the past few months alone by targeting individuals as well as businesses. ![]() GandCrab is one of the world’s most prolific families of ransomware to date and has surpassed all other strains of ransomware, having infected more than 500,000 victims since it was detected in January 2018. The latest decryption tool was developed by the Romanian police in close collaboration with internet security company Bitdefender and Europol, with support from law enforcement authorities in Austria, Belgium, Cyprus, France, Germany, Italy, the Netherlands, the UK and Canada, as well as the FBI in the US. The No More Ransom website is an initiative by the National High Tech Crime Unit of the Netherlands’ police, Europol’s European Cybercrime Centre, McAfee and a growing list of security industry partners that aims to help victims of ransomware retrieve their encrypted data.
0 Comments
Leave a Reply. |