Geeks for your information
Ransomware group deploys virtual machines to hide from antivirus software - Printable Version

+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: News (https://www.geeks.fyi/forumdisplay.php?fid=105)
+--- Forum: Privacy & Security News (https://www.geeks.fyi/forumdisplay.php?fid=107)
+--- Thread: Ransomware group deploys virtual machines to hide from antivirus software (/showthread.php?tid=11560)



Ransomware group deploys virtual machines to hide from antivirus software - dhruv2193 - 23 May 20

Quote:In order to avoid detection by antivirus software, the operators of the RagnarLocker ransomware have begun installing Oracle's VirtualBox and running virtual machines on the computers they infect before deploying their ransomware.
The UK-based cybersecurity firm Sophos first spotted this new technique and it shows just how far cybercriminals are willing to go to ensure that their ransomware attacks are not detected by a victim's antivirus or other security software.
Source(full read)- https://www.techradar.com/in/news/ransomware-group-deploys-virtual-machines-to-hide-from-antivirus-software