XData Ransomware on a Rampage in Ukraine

stapp · May 20, 2017

MalwareHunter, who is one of the people behind the ID-Ransomware service, told Bleeping Computer that XData made today four times more victims inside Ukraine compared to the total for the whole week of the more virulent and self-spreading WannaCry ransomware. XData's numbers are remarkable if we take into account that Ukraine was the fifth most affected country in terms of WannaCry infections.
Click to expand...

https://www.bleepingcomputer.com/news/security/xdata-ransomware-on-a-rampage-in-ukraine/

Minimalist · May 22, 2017

New XData ransomware spreads faster than WannaCry

Following the emergence of the WannaCry ransomware attack campaign last week, another, possibly bigger outbreak is underway. The culprit? A new ransomware called XData.
Click to expand...

http://blog.emsisoft.com/2017/05/22/xdata/

itman · May 22, 2017

Per the Emsisoft link and just like WannCry:

TheXData ransomware was initially spotted in May 2017 and while its distribution method is currently unknown
Click to expand...

Starting to see a pattern?

Minimalist · May 22, 2017

If there are no "regular" distribution methods, then remote intrusion is probable path?

itman · May 22, 2017

Minimalist said: ↑

then remote intrusion is probable path?
Click to expand...

That's a given.

What needs to be done in a lab environment is some heavy duty penetration testing against all the affected Win server vers. which I believe is the entry point to try an find an inbound access point unknown vulnerability.

Log in or Sign up

XData Ransomware on a Rampage in Ukraine

stapp Global Moderator

Minimalist Registered Member

itman Registered Member

Minimalist Registered Member

itman Registered Member

Log in or Sign up

XData Ransomware on a Rampage in Ukraine

stapp Global Moderator

Minimalist Registered Member

itman Registered Member

Minimalist Registered Member

itman Registered Member

Useful Searches