Graphics Package Paired with Ransomware?
Hackers recently exploited the Mario Brothers graphics package, riddling the images with GandCrab ransomware. The hackers took significant time trying to hide their malicious intentions, by hiding the commands in the color channels of the images. By doing so, it makes it difficult for the firewall to detect the threat. In addition, if the commands are run through PowerShell, they likely not being scanned by the third-party antivirus. Unless of course, that security solution has a malicious script block in place, which will track PowerShell, and other scripting engine commands for malicious activity.
According to Dark Reading, this new campaign is currently only a threat to computer users in Italy. However, that does not mean others are entirely safe. It will not take long for hackers to target another geographical area, or for other hackers to deploy the same attack against another demographic. Before falling victim, it’s important users understand modern cyber risks, and what security solutions are available to proactively thwart these attacks.
2,666 total views, 1 views today