Kaspersky has detected ransomware using a legitimate Windows feature

04.06 09:38 | Category Science and culture

Next, the malicious script sends system information and the encryption key generated on the infected computer to the malicious server. After that, it "cleans the tracks". removes logs and various files that can help investigate the attack. At the final stage, the malware forcibly blocks access to the system. The victim sees a message on the screen. "There are no options to restore BitLocker on your computer." Kaspersky experts named the malicious script ShrinkLocker. Changing parameters of hard disk partitions plays a key role during attacks. it provides an opportunity for criminals to boot the system with encrypted files.” The attacks used BitLocker, a tool originally designed to prevent unauthorized access to data. A defensive tool has become a weapon in the hands of criminals. Companies using BitLocker need to use strong passwords and securely store access recovery keys. It is also important to organize a backup copy of important data. We recommend using MDR or EDR class solutions for early detection and, of course, investigating all incidents to identify the original attack vector and exclude the recurrence of similar incidents in the future," comments Konstantin Sapronov, Head of Global Computer Incident Response Team at Kaspersky. Further risk mitigation tips from Kaspersky can be found here.

More News

191 million drams were allocated to the opera and ballet theater

One of the 7 missing paintings of Kochar was found in Moscow. Ruben Kochar (video)

Very valuable books disappeared from the Armenian Genocide Museum-Institute in 2004. Hayk Demoyan

How Yervand Kochar's works disappeared from the museum. the dispute of heirs. "trace"

Criminal proceedings have been initiated. CC: About Ruben Kochar's program

The sit-in of "Goi" theater employees continues

Anything can happen in competitions. Hripsime Hakobyan about his son's performance

The former soloist of "Na-Na" group Vladimir Levki died

The premiere of the film "Monsieur Aznavour" dedicated to the world-famous chansonnier Charles Aznavour will take place

Long live my world, my champion. The excitement of Leo's parents during his speech (video)

Premiere. Lilit Karapetyan: "What is my fault" (video)

Elon Musk is currently working on a new version of Robots that can carry and care for a child for 9 months (video)

LIVE: Protest action of "Goi" staff in front of HRD office

Avinyan allocated 20 million drams to the "Armenian Actors' Union" NGO for the holding of the festival.

Would that some would defend the church with this same zeal in actual attacks; Nazeni Hovhannisyan

The movie "Msyo Aznavour" about Aznavour will appear at the Armenian box office

Doctor of technical sciences, professor Sargis Ghazaryan died

The Foreign Ministry confirmed that the film about Artsakh did not appear in the "Oscar" nomination due to pressure from Baku

At the request of Azerbaijan, Jordan withdrew the film about the revenge of an 11-year-old Artsakh resident submitted to "Oscar".

The policy adopted by the government aims to develop the scientific potential. Zhanna Andreasyan

Kaspersky has detected ransomware using a legitimate Windows feature

Most read

Actress Milena Vardanyan and Canadian Ambassador to Armenia Andrew Turner got married (photo)

The G20 summit called for peace in Ukraine but did not directly condemn the Russian invasion. Why did this happen

The meeting of the foreign ministers of Germany and Armenia has started

Forced resignations by SMS continues. Narek Zeynalyan is the target. Hraparak.am:

What the opposition failed to do, Nikol did: undermined the foundations of the Ministry of Internal Affairs. Sayat Shirinyan

The UN General Assembly adopted a resolution on cooperation with the CSTO

The value of the gifts is up to 1.5 million drams. Another event of Anna Hakobyan

The highlight of the day | November 19

"Calm down, don't get too excited." The council meeting got heated, the police were called (video)

News

The number of victims in Lebanon has reached 47

Putin is not kidding and, unfortunately, we are gradually heading towards disaster. Vucic

Russia should not have informed anyone about the medium-range missile tests. Peskov

The UN has called for urgent steps to be taken to prevent the escalation of the Ukrainian conflict

Shots are heard in the capital of South Sudan

Elon Musk on the cover of Time's December issue

Nikol Pashinyan will give an interview

Iran will respond appropriately. Aragchi

We are confident that we can reach the Champions League again. Mkhitaryan

Burbock criticizes human rights violations in Azerbaijan

Where is the woman, where is being the interior minister?

Britain is now directly involved in the war

The United States imposed sanctions against Gazprombank and its foreign subsidiaries and warned all banks against connecting to the Russian analogue of SWIFT

BBC source in the US administration: ballistic missile launched by Russia, experimental, medium range

Putin addressed the ATACMS and Storm Shadow missile strikes

Ararat Mirzoyan had a telephone conversation with the Iranian Foreign Minister

The highlight of the day | November 21

The third world war has started. Valery Zaluzhny

Did he come to rule the country or to rob us?

Premiere of the movie "New Year's Cinema".

More News