Chinese Hackers who once worked for the government are carrying ransomware attacks, according to the report. Security Experts claim that these hackers earlier did ransomware attacks on the orders of Chinese government and they may be responsible for a series of ransomware attack incidents.
Chinese Hackers Are Now Turning To Ransomware AttacksFour IT Security firms have inspected number of ransomware related attacks in the last few months and they believe that these attacks are carried from China. The group also used advanced techniques to acquire access in the networks, and used software in order to control intrusions. Chinese government said that it will investigate this matter if given genuine proof.
Ransomware is basically a hacking attack which targets the users computer files by encrypting them and then demands money to unlock them. It is like kidnapper demanding money if he holds person as hostage.
Phil Burdette from incident response team at Dell SecureWorks said that “It is obviously a group of skilled of operators that have some amount of experience conducting intrusions,”.
Burdette further said that his team observed how hackers circulated the ransomware after utilizing the notable vulnerabilities in application servers. The hackers harmed about 100 computers and IT firm witnessed that 30 percent of its computers affected. Besides this, transport company was also affected, says report. Security firms Attack Research, InGuardians and G-C Partners claimed that they analyzed three same ransomware attacks separately since December.
Dell said that malicious software had been affiliated by other security firms with a group with name as Codoso, which carried out attacks on behalf of Chinese Government inlcluding U.S. defense companies.
Also Read: OS X Ransom-ware Found in BitTorrent App
Ransomware is present since 1989 called as “AIDS” Trojan and it usually propagates as a Trojan. Recently, Apple Mac users had became the victims of ransom-ware attack was already downloaded 6000 times before the threat was spotted says developer whose product was infected with this malicious software, later it was resolved.
Last Month, Malware was found in Android devices called as Xbot which targets banking details and ransom-ware which uses a method called “Activity Hijacking” in order to hack into android and stealing banking credentials and personal information.