MY BRAND BOOK New Attack TTP - Virtual Machines used for Ransomware

New Attack TTP - Virtual Machines used for Ransomware

By MYBRANDBOOK

A new ransomware attack method takes defense evasion to a new level-deploying as a full virtual machine on each targeted device to hide the ransomware from view. In a recently detected attack, Ragnar Locker ransomware was deployed inside an Oracle VirtualBox Windows XP virtual machine. This is the first time Sophos has seen this kind of TTP used for a ransomware attack, according to Mark Loman, director of engineering, Threat Mitigation at Sophos. says, Mark Loman, director of engineering, Threat Mitigation at Sophos who further explains the attack.

SophosLabs Uncut has posted, “Ragnar Locker ransomware deploys virtual machine to dodge security,” a blog article that details a new Ragnar Locker TTP discovery, including a recent shift to deploy a well-known trusted hypervisor to hundreds of endpoints at the same time. This is the first time Sophos has seen this kind of TTP used for a ransomware attack, according to Mark Loman, director of engineering, Threat Mitigation at Sophos.

This shows on how the attackers have advanced their methods and attempts to evade detection. the research further says,

“In the last few months, we’ve seen ransomware evolve in several ways. But, the Ragnar Locker adversaries are taking ransomware to a new level and thinking outside of the box. They are deploying a well-known trusted hypervisor to hundreds of endpoints simultaneously, together with a pre-installed and pre-configured virtual disk image guaranteed to run their ransomware. Like a ghost able to interact with the material world, their virtual machine is tailored per endpoint, so it can encrypt the local disks and mapped network drives on the physical machine, from within the virtual plane and out of the detection realm of most endpoint protection products. The overhead involved to covertly run their 50 kilobyte ransomware seems like a bold, noisy move, but could pay-off in some networks that are not properly protected against ransomware,” said Mark Loman, director of engineering, Threat Mitigation at Sophos. “This is the first time we have seen virtual machines used for ransomware.”

BREAKING NEWS

RBI Releases Draft Guidelines on Payment Aggregator...

In an effort to improve rules on payment aggregators and strengthen the pa...

Microsoft offers $1.5 billion to G42, an AI company...

With Brad Smith joining the board, Microsoft announced a $1.5 billion (...

Zee withdraws merger implementation application from NCLT for Son...

Zee Entertainment Enterprises is said to have withdrawn its application fr...

HPE deploys its ‘Made in India’ servers at large scale ahead ...

Hewlett Packard Enterprise has announced that its “Made in India” serv...

TECHNO TRENDS

Happiest Minds brings in an innovative GenAI chatbot

Happiest Minds Technologies has announced the new GenAI chatbot - ‘hAPPI...

Government mandates encryption for CCTV cameras to ensure netw

In the wake of issuing an internal advisory on securing CCTV cameras at g...

TRAI recommends allowing only Indian entities to participate i

The Telecom Regulatory Authority of India (TRAI) has recommended that onl...

Galaxy AI is available on more devices with Samsung One UI 6.1

Samsung has expanded the range of smartphones to which One UI 6.1 and Gala...

E-Magazine

TECHNOTAINMENT

Salman Khan trolled for singing with B Praak at Anant Ambani's

Disney+ Hotstar wins the Best OTT Platform of the year

Film Critics Guild and Group M Motion Entertainment, in collaboration with

Miss World 2024: Krystyna Pyszková of the Czech Republic wins

Krystyna Pyszková of the Czech Republic has been crowned as the 71st Miss

MOVERS & SHAKERS

Microsoft India welcomes Arun Kakatkar as GM of human resource

Brillio appoints Ashish Singh to its Board of Directors

Brillio has announced that Ashish Singh has been appointed to the company�

JSW One Platforms ropes in Dr Ranjan Pai as Independent Direct

JSW One Platforms, part of US$23 billion JSW Group has appointed Dr Ranjan

OPEN YOUR EYES

We have to continue our efforts to drive the country

Ragnar Locker Hides in Virtual Machine to Escape from antivirus software

DIGITAL: THE NEXT REVOLUTION

Entire communications is moving towards Webinar :Age of Discovery

Can we could visualise a new world post COVID -19

INTERVIEWS

AMD Pensando innovation CONTINUES

HPE Aruba Networking bridging the physical and digital worlds

The information technology industry is a critical component of the 21st cen

Lenovo aims to solve customers' critical business needs throug

enovo recognizes the immense potential and the crucial role that technology

HOT PICK

Dell Technologies launches the new consumer and gaming portfol

HP launches first laptop in India with Microsoft CoPilot butto

HP has launched sleek and stylish Envy x360 14 laptops in India which beco

OnePlus debut its Nord CE4 smartphone

OnePlus Nord CE4 continues the trend of attention-grabbing design with two

MAKE IN INDIA BRANDS

CENTRE FOR DEVELOPMENT OF TELEMATICS

HIMACHAL FUTURISTIC COMMUNICATIONS LTD.

TEJAS NETWORKS INDIA PVT. LTD.

DIGISOL SYSTEMS LTD.

EMINENT CIO'S OF INDIA

Embracing state-of-the-art technologies for enhanced organizational success

In 2023-24, as a technology leader, our primary fo...

Securing and improving the security postures from leading security breaches

We are pioneers in cybersecurity with a track reco...

Driving business with latest technologies, innovation and collaboration

valuate and implement advanced analytics and data-...

ICONS OF INDIA

Technology Icons Of India 2023: Sridhar Vembu

Sridhar Vembu is an Indian billionaire business magnate and the Founde...

Technology Icons Of India 2023: Sunil Bharti Mittal

Sunil Bharti Mittal is the Founder and Chairman of Bharti Enterprises,...

Technology Icons Of India 2023: Lt Gen (Dr.) Rajesh Pant (Retd.)

LT Gen(Dr.) Rajesh Panth (Retd.), National cyber security coordination...

PARTNER SPEAKERS

The Ability To Be Flexible And Adaptable Is Essential For Navigating The Unknowns Of The Future

Shivaami’s support and encouragement play a vital role in helping enterprise...

Technological innovations impacting today will redefine the future

Securenet stands apart due to its commitment to 15 essential criteria covering...

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

PSU

C-DAC keeps India ahead in IT & Electronics R&D space

Centre for Development of Advanced Computing (C-DAC) is the premier R&...

New defence PSUs will help India become self-reliant

MIL, India’s biggest manufacturer and market leader is engaged in Pr...

NPCI leading India towards Digital payments

The National Payments Corporation of India (NPCI) is an initiative tak...

VIDEOS

Top 25 Brands

Most Trusted Brands 2023 : Zoom Communications Ltd.

A communications technology company headquartered in San Jose, California, Zoo...

Most Trusted Brands 2023 : Tata Consultancy Services (TCS)

TCS’s commitment to innovation helps it stay ahead of the competition and de...

Most Trusted Brands 2023 : Nvidia Graphics Pvt. Ltd.

NVIDIA GPUs offer a wide range of features that are specifically designed to a...

Value-Added Distribution

B D SOFTWARE

BD Software is the distributor of IT security solutions in India. The ...

EXCLUSIVE NETWORKS SALES INDIA PVT. LTD.

Exclusive Networks is a globally trusted cybersecurity specialist hel...

SAVEX TECHNOLOGIES PVT. LTD.

Savex Technologies is the 3rd largest Information & Communication Tec...

ITFORUM 2024

WIITF 2024

CMO of the Year

WOMEN LEADERSHIP

EMINENT CIO's OF INDIA

TRENDS IN TECHNOLOGY