Kaspersky has detected ransomware using a legitimate Windows feature

04.06 09:38 | Category Science and culture

Next, the malicious script sends system information and the encryption key generated on the infected computer to the malicious server. After that, it "cleans the tracks". removes logs and various files that can help investigate the attack. At the final stage, the malware forcibly blocks access to the system. The victim sees a message on the screen. "There are no options to restore BitLocker on your computer." Kaspersky experts named the malicious script ShrinkLocker. Changing parameters of hard disk partitions plays a key role during attacks. it provides an opportunity for criminals to boot the system with encrypted files.” The attacks used BitLocker, a tool originally designed to prevent unauthorized access to data. A defensive tool has become a weapon in the hands of criminals. Companies using BitLocker need to use strong passwords and securely store access recovery keys. It is also important to organize a backup copy of important data. We recommend using MDR or EDR class solutions for early detection and, of course, investigating all incidents to identify the original attack vector and exclude the recurrence of similar incidents in the future," comments Konstantin Sapronov, Head of Global Computer Incident Response Team at Kaspersky. Further risk mitigation tips from Kaspersky can be found here.

More News

The project representing Armenia at the Venice International Biennale is well known

TikTok will stop updating in the US unless the Supreme Court decides otherwise

The application for "To Eurovision" is over

Can you use your smartphone while charging? Experts have commented

An illustrated digital list of Stepanakert monumental art builders will be created

Scientists have named a drink that saves from cancer

China introduced the first autonomous flying taxis (video)

The specialist said: how many minutes does one cigarette take from a life?

I want my Hrant Tokhatyan, my honest, sincere, kind friend, to make people happy again. Ashot Ghazaryan

It is Hrant Tokhatyan's birthday. son and Chamber Theater congratulated

How Armenia will use the satellite does not concern our Spanish partners at all. Minister of BTA

Actor Hovhannes Davtyan is celebrating his 40th birthday

I don't know where the statue of Jesus will be placed, but it will definitely not be placed in the area of the monument. Andreasyan (video)

At the moment, we are not discussing the unification program of individual universities. Zhanna Andreasyan

We remind you once again that the historical and cultural values of Artsakh are in danger of destruction. Hovik Avanesov

Vache Tovmasyan attended the "Golden Globe" award ceremony (video)

Sirun Minas published warm photos with her husband

Composer Gevorg Hovannisyan died

A new New Year's video from Leo, the representative of Armenia in "Junior Eurovision 2024".

Actor Hrachya Harutyunyan with his granddaughter Zabel visited the theater before the New Year (video)

Kaspersky has detected ransomware using a legitimate Windows feature

Most read

The ban on direct negotiations with Putin remains in force

Armenia will sign a strategic document with the USA. essential differences between alliance and partnership (video)

TikTok will not be sold to Elon Musk (video)

Who will protect Armenia in case of possible aggression? The West?

A case has been initiated in Russia against businessman Hambardzumyan. what is the reason

A Gaza ceasefire agreement is now closer than ever. Blinken

The division in CP is deepening. drugs, corruption, conspiracies (video)

The black boxes of the destroyed plane gave very interesting information. Lavrov

"Neither an agreement, nor a declaration, but a commission charter was signed." Hakob Badalyan

News

A powerful flare has occurred on the Sun

How to submit an annual income statement in 2025 (video)

In Baku prison, Ruben Vardanyan was deprived of water, forced to stand for a long time. BBC:

Garik Galeyan was placed under house arrest

If you want the EU, then be ready to deny Artsakh and deny the Genocide. Colonel Makhsudyan (video)

We call on the RA government to advance the promised reforms. Freedom House

Pashinyan's inaction cannot be forgotten or forgiven. Vardan Oskanyan

Biden commuted the sentences of 2,500 drug addicts

The court session of the Armenian prisoners held illegally in Azerbaijan has started in Baku (video)

In France, the left failed to pass a vote of no confidence in Prime Minister Bayrou

The time for revenge has come, I will defeat him. Tsarukyan about the fight against Makhachev

Sales of electric and hybrid vehicles in the US reached a record 20%

Donald Trump will bring peace to the Caucasus. Congressman Joe Wilson

NBC: Biden considered pardoning Trump after the US election

This is only the first step, it is not necessary to evaluate it strictly. Armen Badalyan (video)

Pezeshkian. Iran is determined to fulfill all agreements with Russia

The enforcement service confiscated more than 19 billion drams for the state budget in 2024

Sijarto: Hungary considers Trump a political ally of Orbán

The military-political leadership of Artsakh is in court in Baku (video)

The fake trials in Baku are not legal. statement

More News