Ransomware group deploys virtual machines to hide from antivirus software

Ransomware group deploys virtual machines to hide from antivirus software

dhruv2193 Offline

Senior Member

Posts: 434
Threads: 153
Thanks Received: 589 in 348 posts
Thanks Given: 908
Joined: 25 October 17

23 May 20, 06:07

Quote:In order to avoid detection by antivirus software, the operators of the RagnarLocker ransomware have begun installing Oracle's VirtualBox and running virtual machines on the computers they infect before deploying their ransomware.
The UK-based cybersecurity firm Sophos first spotted this new technique and it shows just how far cybercriminals are willing to go to ensure that their ransomware attacks are not detected by a victim's antivirus or other security software.

Source(full read)- https://www.techradar.com/in/news/ransom...s-software

The following 1 user says Thank You to dhruv2193 for this post:
• harlan4096

Find

« Next Oldest | Next Newest »

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Welcome
You have to register before you can post on our site. Username/Email: Password: Remember me

Recent Posts
Version 9.6.4 for Windows
Version 9.6.4 for ...harlan4096 — 06:46
AMD confirms focus shifts to RDNA3 and R...
Goodbye Radeon RX ...harlan4096 — 06:45
F-Droid says Google's statement about "S...
A month ago, F-Dro...harlan4096 — 06:44
Google Chrome to enable HTTPS by default...
Google has announc...harlan4096 — 06:41
Revo Registry Cleaner
Revo Registry Cleane...jasonX — 01:51

Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

Online Staff
There are no staff members currently online.

Login
Username/Email:
Password:	Lost Password?
	Remember me