New Ransomware Encrypts Data and Makes Nasty Threats

Share post:

Cybercriminals spread a new form of ransomware in attacks on victims, in which they not only encrypt the network, but also issue threats to launch distributed denial of service (DDoS) attacks and force employees and business partners to pay a ransom.

The ransomware, called Yanluowang, was discovered by cybersecurity researchers from Broadcom Software’s Symantec Threat Hunter team as they investigated an attempted cyber attack against a large, unidentified company.

Yanluowang drops a ransom note that informs the victim about the ransomware infection and urging them to provide a contact address to negotiate a ransom payment. The note warns victims not to contact the police, the FBI or authorities and not to contact any cybersecurity company – unless they want to lose their data forever.

However, the cyber criminals behind Yanluowang go even further with their threats: when the victim requests outside help, they launch DDoS attacks – flooding their websites with so much traffic that they crash. They also threaten the victims with further attacks or even permanently delete the encrypted data.

Researchers discovered the attack after seeing the suspicious use of AdFind, a legitimate command line in the Active Directory query tool.

The Ransomware still seems to be a work in progress so that it could become more effective.

For more information, you may view the original story from Zdnet.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Air Canada admits hack of employee data

Hacker had "limited access" to data, ai

DDoS attacks behind Canada border agency problems

Canada’s border control agency is the latest federal department to confirm it was hit by a recent wave of denial of service attacks. “The Canada Border Services Agency (CBSA) can confirm that connectivity issues that affected kiosks and electronic gates at airports on Sunday, September 17, 2023 are the result of a distributed denial of

DDoS attacks behind Canada border agency problems

Canada’s border control agency is the latest federal department to confirm it was hit by a recent wave of denial of service attacks. “The Canada Border Services Agency (CBSA) can confirm that connectivity issues that affected kiosks and electronic gates at airports on Sunday, September 17, 2023 are the result of a distributed denial of

Cyber Security Today, Sept. 20, 2023 – A new online card-skimming campaign, new WinServer backdoors and more

This episode reports on the possiblity that thousands of internet-facing Juniper SRX firewalls and EX switches may be at risk from a new way to exploit a recently discovered vulnerability

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways