Home > Knowledge Centre > Ransomware

A new ransomware campaign in the wild,Ryuk!!

  • Shriram Munde / 7 years
  • 1
  • 3 min read

Recently, Quick Heal Security Labs observed a new destructive ransomware named ‘Ryuk. Ransomware’. This ransomware campaign has already affected many users worldwide and seems to be a spear phishing attack. The compelling thing, it encrypts victim files without appending any extension but making files unreadable. Ryuk uses robust military algorithms such as ‘RSA4096’ and ‘AES-256’ […]

Beware of the Armage Ransomware – the File Destroyer!

  • Shriram Munde / 7 years
  • 1
  • 3 min read

In July last week, Quick Heal Security Labs detected a new ransomware called Armage. It appends ‘.Armage’ extension to files it encrypts. Armage ransomware uses the AES-256 encryption algorithm to encode files making them inoperable. It spreads via spam emails and corrupted text files. Technical analysis Once executed on the infected computer, Armage ransomware opens […]

A new ransom-miner malware campaign emerging in wild!

  • Preksha Saxena / 8 years
  • 0
  • 7 min read

Since the past few weeks, Quick Heal Security Labs has been observing a series of interesting malware blocked at our customer end. The further analysis of the malware ‘t.exe’ revealed that the malware seems to be Trojan dropper. Interestingly, this multipurpose malware is downloading a ransomware component, a crypto-mining malware and many more. It also […]

The Runner: a key component of the SamSam ransomware campaign – An analysis by Quick Heal Security Labs

  • Amar Patil / 8 years
  • 0
  • 4 min read

In Jan 2018, Greenfield, Indiana-based Hancock Health (healthcare network) was attacked by SamSam ransomware. It encrypted the files containing patients’ data which disrupted their critical services. Even though SamSam is not a new ransomware, it has evolved over a period of time. We had observed its first variant in Feb 2016 that used the RSA […]

Cybersecurity prediction for 2018

Cybersecurity Predictions: What to expect in 2018

  • Sakshat Karkare / 8 years
  • 1
  • 10 min read

Get ready! 2018 is going to be much worse for cybersecurity than what it was for 2017. Before we get on with the cybersecurity predictions for 2018, let’s take a quick flashback of 2017 2017 was riddled with cybersecurity mayhem: WannaCry – the biggest ransomware attack in history; took down over 300,000 computers worldwide, closely […]

Android Ransomware Alert! DoubleLocker changes your phone’s PIN and encrypts your data

  • Sakshat Karkare / 8 years
  • 0
  • 3 min read

DoubleLocker is an Android ransomware the likes of which have never been seen before. The malware is designed to launch a two-pronged attack – it locks down the phone it infects and encrypts all files stored on the device. What is spreading DoubleLocker ransomware? The malware gets into a device when a user is tricked […]

Bad Rabbit Ransomware

What is Bad Rabbit Ransomware and how can you stay safe?

  • Sakshat Karkare / 8 years
  • 0
  • 3 min read

On 24 October 2017 (Tuesday), a new ransomware was let loose on the Internet. It is known as Bad Rabbit and seems to bear similar characteristics to the infamous NotPetya ransomware. Victims of Bad Rabbit Organizations in Russia and Ukraine were the initial casualties of this ransomware – they include Ukraine’s Ministry of Infrastructure, Kiev’s […]

How a ransomware infects your computer [INFOGRAPHIC]

  • Sakshat Karkare / 8 years
  • 0
  • 1 min read

Education is a constant process – it never stops. While we have spoken about ransomware at great lengths in the past, there is no reason why we should not be doing that again. Ransomware is probably the most dreaded cyberthreat that can strike anyone and at anytime unless we prepare ourselves against it. And the […]