Kaspersky has detected ransomware using a legitimate Windows feature

04.06 09:38 | Category Science and culture

Next, the malicious script sends system information and the encryption key generated on the infected computer to the malicious server. After that, it "cleans the tracks". removes logs and various files that can help investigate the attack. At the final stage, the malware forcibly blocks access to the system. The victim sees a message on the screen. "There are no options to restore BitLocker on your computer." Kaspersky experts named the malicious script ShrinkLocker. Changing parameters of hard disk partitions plays a key role during attacks. it provides an opportunity for criminals to boot the system with encrypted files.” The attacks used BitLocker, a tool originally designed to prevent unauthorized access to data. A defensive tool has become a weapon in the hands of criminals. Companies using BitLocker need to use strong passwords and securely store access recovery keys. It is also important to organize a backup copy of important data. We recommend using MDR or EDR class solutions for early detection and, of course, investigating all incidents to identify the original attack vector and exclude the recurrence of similar incidents in the future," comments Konstantin Sapronov, Head of Global Computer Incident Response Team at Kaspersky. Further risk mitigation tips from Kaspersky can be found here.

More News

French actress Brigitte Bardot died

The 12th century Armenian church door will be moved to the Armenian History Museum

In 2035, there may be clashes between humans and robots in Europe. Europol

The winner of Eurovision 2024 has refused the trophy because of Israel's participation

Scientists have discovered the chemical composition of small asteroids

A gene editing method has been developed to destroy HIV

Signals emitted by comet 3I/Atlas confirm its natural origin

A new life form has been discovered in Chernobyl

Revival of memory and culture. "The love story of Artsakh" returned to the stage (video)

The treasures of the depository-museum of St. Etchmiadzin Cathedral

People's Artist of Russia Vladimir Simonov died

It became known where the first people came from

Chimpanzees have been found to show signs of rational thinking

A terrifying bat signal has been detected in space

Scientists warn about the deadly danger of vaping

Scientists have discovered the secret to alleviating knee pain

Scientists have found out what the void of space is made of

Scientists have recorded the brightest black hole explosion in history

Two powerful flares were recorded on the Sun in one hour

The International Festival "Theatron" aims to strengthen the cultural dialogue between Armenia and the Francophone world

Kaspersky has detected ransomware using a legitimate Windows feature

Most read

"Now I'm trying to buy a ticket to go to Armenia." Vigen Euljekchyan's wife about her husband's release

Gevorg Sujyan, Davit Davtyan, Vigen Euljekjian and Vagif Khachatryan surrendered to RA a little while ago on the Hakar bridge. Pashinyan

Xavi Alonso has been dismissed as the head coach of Real Madrid

"Bravo, Armenia!" Conor McGregor

Did Tavros Sapeyan's father kill a freedom fighter? sensational details (video)

The USA is temporarily suspending the processing of immigrant visas for Armenia

The place where the stolen artefacts from the Louvre were taken has been found in France

The constellation CE2XZW2 may collide with Earth

Reuters reported a possible US attack on Iran within the next 24 hours

News

Zhanna Andreasyan accepted teachers

The leadership of the country occupying the Armenian territories supports Pashinyan. Turkic scholar

"Foton" truck collided with several parked cars on Davit Bek Street in Yerevan

RA SRC officials were arrested. Putin will make an important statement

Zakharova warned Great Britain about possible damage to ships

The process of appointing a new special representative in the South Caucasus is coming to an end. NATO

Criminal proceedings have been initiated regarding the incident with the participation of minors and the case of Kravyan on Abovyan street. 5 people were arrested

What does it mean, when the time comes, we will say: 7 months have passed. Bagrat Srbazan (video)

The representatives of the Armenian and Azerbaijani sides conducted joint inspections in the Sadarak-Yerask railway section

I'm sure they have a problem with remembering. Saint Bagrat to the judge (video)

Iran has closed its airspace. The return of 4 Armenians from Baku to their homeland was a consolation. His Holiness (video)

HRD had private talks with 4 prisoners returned from Azerbaijan

Ani Ohanyan and her daughter are already in Russia. what publications does he make (photos)

Ankara is against any military intervention against Iran. Fida

18-year-old political prisoner Andranik Chamichyan was released from house arrest by the court's decision

Trump can suddenly "freeze" the tension around Greenland. possible scenarios

Gagik Yeganyan died

Putin will make an important announcement. Kremlin

What is the real goal of the USA in Venezuela? CNN:

The Foreign Ministry of Canada welcomed the release of four Armenians by Azerbaijan

More News