Locky, the professional grade ransomware has been causing headaches and damages to victim’s wallet for quite sometime. It uses the document-based macros for ransomware distribution, encrypts files on the victims’ computers with an additional‘.locky’ as extension which is what the ransomware is named after. Locky is professionally written, massively spread, costly if infected, most importantly it is evolving. It has been stable for the past year with no major version upgrade until recently. Our VEX system captured a new variant Locky sample at the beginning of last week. It encrypts the network traffic in a completely different method, and a different URI with the same IP in communication.
A New Variant of Locky Leaking Out | Fortinet Blog
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.