Researchers at cybersecurity firm Kaspersky have uncovered new encryption ransomware named Sodin (Sodinokibi or REvil) that exploits a recently discovered Windows vulnerability to get elevated privileges in an infected system. The ransomware takes advantage of the architecture of the central processing unit (CPU) to avoid detection – functionality that is not often seen in ransomware.
“Ransomware is a very popular type of malware, yet it’s not often that we see such an elaborate and sophisticated version: using the CPU architecture to fly under the radar is not a common practice for encryptors,” said Fedor Sinitsyn, a security researcher at Kaspersky.
“We expect a rise in the number of attacks involving the Sodin encryptor, since the amount of resources that are required to build such malware is significant. Those who invested in the malware’s development definitely expect if to pay off handsomely,” Sinitsyn added.
The researchers found that most targets of Sodin ransomware were found in the Asian region: 17.6 percent of attacks have been detected in Taiwan, 9.8 percent in Hong Kong and 8.8 percent in the Republic of Korea.
However, attacks have also been observed in Europe, North America and Latin America, Kaspersky said, adding that the ransomware note left on infected PCs demands $2500 worth of Bitcoin from each victim.
The vulnerability CVE-2018-8453 that the ransomware uses was earlier found to be exploited by the FruityArmor hacking group. The vulnerability was patched on October 10, 2018, Kaspersky said.
To avoid falling victim to Sodin threats, make sure that the software used in your company is regularly updated to the most recent versions, said Kaspersky researchers.
Security products with vulnerability assessment and patch management capabilities may help to automate these processes, they added.
Is It Safe To Use Skins On The Nintendo Switch?
In the early days, it was not advisable to put any adhesive skins on the Nintendo Switch, but things have changed.
Prada Is Going To The Moon – Literally
Italian high fashion label Prada will be designing suits for NASA's Artemis III mission and aims to enhance flexibility, technical capabilities, and durability.
If You're Buying A New Android Phone In 2023, Stay Away From These Options
If you're looking to buy a new Android phone this year, you certainly have a lot of options. That said, you'll probably want to avoid these three models.
How To Stop Random People From Requesting Your Location On Google Maps
If someone was able to request your Google Maps location, they either lucked out and guessed your Gmail address or...
Vulnerabilities in Supermicro BMCs could allow for unkillable server rootkits
Getty Images If your organization uses servers that are equipped with baseboard management controllers from Supermicro, it’s time, once again,...
Gmail unleashes “email emoji reactions” onto an unsuspecting world
Gmail emoji reactions below and email (left) and the “add emoji” bar on the right. Google Finally, the feature everyone...
Colorful quantum dots snag 2023 Nobel Prize in Chemistry
Enlarge / Vials of quantum dots with gradually stepping emission from violet to deep red. Once thought impossible to make,...
2024 Genesis GV60 RWD Fixes The EV’s Biggest Problem
The 2024 Genesis GV60 Standard RWD trim has a starting MSRP of $52,000. The GV60 Advanced AWD and GV60 Performance...
Social1 year ago
Web.com website builder review
Social4 years ago
CrashPlan for Small Business Review
Gadgets5 years ago
A fictional Facebook Portal videochat with Mark Zuckerberg – TechCrunch
Cars5 years ago
What’s the best cloud storage for you?
Social5 years ago
iPhone XS priciest yet in South Korea
Mobile5 years ago
Memory raises $5M to bring AI to time tracking – TechCrunch
Security5 years ago
Google latest cloud to be Australian government certified
Social5 years ago
Apple’s new iPad Pro aims to keep enterprise momentum