Kaspersky has detected ransomware using a legitimate Windows feature

04.06.2024 09:38 | Category Science and culture

Next, the malicious script sends system information and the encryption key generated on the infected computer to the malicious server. After that, it "cleans the tracks". removes logs and various files that can help investigate the attack. At the final stage, the malware forcibly blocks access to the system. The victim sees a message on the screen. "There are no options to restore BitLocker on your computer." Kaspersky experts named the malicious script ShrinkLocker. Changing parameters of hard disk partitions plays a key role during attacks. it provides an opportunity for criminals to boot the system with encrypted files.” The attacks used BitLocker, a tool originally designed to prevent unauthorized access to data. A defensive tool has become a weapon in the hands of criminals. Companies using BitLocker need to use strong passwords and securely store access recovery keys. It is also important to organize a backup copy of important data. We recommend using MDR or EDR class solutions for early detection and, of course, investigating all incidents to identify the original attack vector and exclude the recurrence of similar incidents in the future," comments Konstantin Sapronov, Head of Global Computer Incident Response Team at Kaspersky. Further risk mitigation tips from Kaspersky can be found here.

More News

The "Classical Eurovision 2026" contest has started in Yerevan. The representative of Armenia will give a speech on the 6th

"The End of Genocide": The Russian edition of Raymond Gevorgyan's work was presented in Yerevan

Around 30 state and private museums and collections of Artsakh appeared in the conditions of the archaeological flood

"Sacrifice to the gods". a chance walk in Norway led to a sensational find

Scientists have found that Neanderthal genes may be the cause of depression

Scientists have explained the phenomenon of "sixth sense".

Scientists have discovered an unusual arachnid in amber, dating back 35 million years

Scientists have found that every person's brain is "wired" for music from birth

Scientists have found that pepper leaves can slow down the deposition of fat

2026 is an important year for 6G and smart systems

NASA is preparing a technological base for flights to Mars

"We almost had a disaster." NASA's belated confession

Scientists have found out what kind of behavior "reveals" a confident man

Scientists have discovered a hidden sign of psychopathy in relationships

Scientists have found a way to "turn off" prostate cancer genes

Products found to be hazardous to the mobility of the elderly

Scientists warn about the deadly danger of vaping

Scientists have created crystals that defy the laws of physics for the first time

Scientists have warned of the high dangers of electric scooters for children

A way to detect brain damage before symptoms appear has been discovered

Kaspersky has detected ransomware using a legitimate Windows feature

Most read

We have already won. Tsarukyan on the victory of the opposition (video)

You still have to answer for all registered election violations. Saghatelyan to Pashinyan

2 presidents and 1 secretary of the commission were arrested

5 people were arrested on charges of giving and receiving election bribes

The leader of "Enlightened Armenia" also voted in the elections

HRD staff works in emergency mode on election day. a hotline is available

We made a choice so that God would protect the state and overcome trials. His Holiness (video)

This is a Mussolini-Serge-Nicol system, the fruit of which cannot be good. Paruyr Hayrikyan (video)

Robert Kocharyan participates in the elections with his wife (video)

News

Trump considered it possible for the US to participate in the reconstruction of Iran's infrastructure

NYT. The US and Iran are discussing a 15-year ban on uranium enrichment

Executive director of Artashat JOE Karen Beniaminyan was relieved of his post

What is the real formula for the development of our country? businessman, publicist Ruben Grigoryan (video)

Trump admitted that Iran shot down the American helicopter over Hormuz

Power outages in Yerevan and marzes

Is taking mandates political suicide? Victor Mnatsakanyan at the Euromedia24 booth (video)

"They put their heads against the wall, or can they gamble on votes?" will the opposition take the mandates (video)

Russia and Ukraine reported mutual strikes

The activity of the bakery workshop was suspended in Ararat Marz. SATM

Russia remains strong. Medvedev. Criminal prosecution against Gagik Tsarukyan (video)

In the last 2 months, more than 160 motions to apply a restraining order have been submitted to the court

Asryan denied claims that the weapons acquired in recent years are not comparable with the army's armament

After the recount of votes in 2 polling stations, 92 votes will be added in favor of PAP.

The championship of the RA highest group will be held with 12 teams

Trump made a sensational statement: Pashinyan ordered to "catch" the participants of election bribes (video)

"Real" demanded from UEFA to strip "Barcelona" of their titles and remove them from the European Cups

The number of victims of the earthquake in the Philippines has reached 37

Why has the number of voters decreased? "Fact"

"Number 1" readiness was declared for the police guard. "Publication"

More News