Kaspersky has detected ransomware using a legitimate Windows feature

04.06 09:38 | Category Science and culture

Next, the malicious script sends system information and the encryption key generated on the infected computer to the malicious server. After that, it "cleans the tracks". removes logs and various files that can help investigate the attack. At the final stage, the malware forcibly blocks access to the system. The victim sees a message on the screen. "There are no options to restore BitLocker on your computer." Kaspersky experts named the malicious script ShrinkLocker. Changing parameters of hard disk partitions plays a key role during attacks. it provides an opportunity for criminals to boot the system with encrypted files.” The attacks used BitLocker, a tool originally designed to prevent unauthorized access to data. A defensive tool has become a weapon in the hands of criminals. Companies using BitLocker need to use strong passwords and securely store access recovery keys. It is also important to organize a backup copy of important data. We recommend using MDR or EDR class solutions for early detection and, of course, investigating all incidents to identify the original attack vector and exclude the recurrence of similar incidents in the future," comments Konstantin Sapronov, Head of Global Computer Incident Response Team at Kaspersky. Further risk mitigation tips from Kaspersky can be found here.

More News

Revival of memory and culture. "The love story of Artsakh" returned to the stage (video)

The treasures of the depository-museum of St. Etchmiadzin Cathedral

People's Artist of Russia Vladimir Simonov died

It became known where the first people came from

Chimpanzees have been found to show signs of rational thinking

A terrifying bat signal has been detected in space

Scientists warn about the deadly danger of vaping

Scientists have discovered the secret to alleviating knee pain

Scientists have found out what the void of space is made of

Scientists have recorded the brightest black hole explosion in history

Two powerful flares were recorded on the Sun in one hour

The International Festival "Theatron" aims to strengthen the cultural dialogue between Armenia and the Francophone world

Scientists have discovered a hidden sign of psychopathy in relationships

12,000-year-old petroglyphs have been found underwater in Turkey

A link has been found between graying hair and the risk of skin cancer

Scientists have found a way to "turn off" prostate cancer genes

The oldest image of a tiger was found in Iran

Scientists have found out what kind of behavior "reveals" a confident man

It has been called a simple way to improve well-being

Physicists have managed to look inside the nucleus of an atom for the first time

Kaspersky has detected ransomware using a legitimate Windows feature

Most read

In Masis, the opposition did not allow the power to be taken from its hands. the community has a new leader (video)

In Masis, the opposition did not allow the power to be taken from its hands. the community has a new leader

Lithuania has not ruled out opening the border with Belarus earlier than planned: The old world order is over: Merts (video)

Week of changes. Astrology tips for all signs for the week of November 17-23

Mkhitaryan resumed training

The "Sapsan" falcon was transferred to the rehabilitation center. The lynx was released into the wild. BTU

We carried out the pre-election campaign under enormous pressure. Grisha Harutyunyan

The bus serving route No. 22 and the "Opel" collided in the Artashat highway. there is an injured person

I congratulate Argishti Mekhakyan on the occasion of being elected the head of the enlarged Vagharshapat community. Nikol Pashinyan

News

FIFA: The Armenian national team retreated in the classification table

In Ararat Marz, "Opel" drove in the opposite lane and collided with a "Volvo" truck. there is

The USA did not inform Germany about the new plan regarding Ukraine. MFA

Russia wants to live in peace with moral principles. Zakharova

Mertz considers the use of Russian frozen assets as the EU's "most serious lever"

Brussels airport will cancel all flights. what is the reason

11 people were killed as a result of Israeli airstrikes on Gaza

Israel has started to attack Lebanon

Burns. myth and reality, advice of a burn specialist (video)

Senegal won by 8 goals

2 "Toyota" and "Tesla" collided in Zovuni. there are 3 casualties

Syunik Marz patrols discovered a case of illegal tree cutting

Ukrainian leader Volodymyr Zelensky's "retribution hour" is near (video)

The President of Armenia arrived in Georgia on an official visit. Poland temporarily closed two airports (video)

I want to apologize. Head coach of the Armenian football team

In Gyumri, the production activity of the public food facility was suspended

In a few months we will congratulate each other on the victory of justice and the defeat of evil. Samvel Karapetyan from NSS

The new look and security features of the ID card have been confirmed

Iran considers the nuclear negotiations with the USA pointless

Il Fatto Daily. The Italian Ministry of Defense recognized the loss of territory by Ukraine

More News