Don't Update Your Windows 10 Via Email, It Might Be Cyborg Ransomware

|

If you're planning to hit the update button via any email update on your Windows 10 powered laptop or PC then it's better to drop the plan right now because that is a fake update which can inject ransomware on your system. According to security researchers from Trustwave's SpriderLabs, a malicious campaign is sending out spoofed emails from Microsoft to inject Cyborh ransomware. Here are more details:

Don't Update Your Windows 10 Via Email, It Might Be Cyborg Ransomware

 

As per security researchers, target users will receive an email which will arrive with some subject like 'Install Latest Microsoft Windows Update now!' or 'Critical Microsoft Windows Update!' Don't trust these emails because Microsoft sends updates via Windows updates and not through emails.

These emails will arrive with one line content like "Please install the latest critical update from Microsoft attached to this email". It will also come with a ".jpg" attachment which is actually an executable file. This file is malicious .NET download which is designed by the attacker to inject malware in your system. Researchers said that this file will inject Cyborg ransomware.

While clicking on the email attachment, the hidden executable will download a file called 'bitcoingenerator.exe'. This file is a .NET compiled malware called Cyborg ransomware.

Don't Update Your Windows 10 Via Email, It Might Be Cyborg Ransomware

Do note that once activated, the ransomware will start encrypting all the files on the infected user's computer or laptop. It will also add their filenames with its own record augmentation, 777. After that, the malware will leave a ransom note with the file name 'Cyborg_DECRYPT.txt'. At last, the ransomware leaves a duplicate of itself called 'bot.exe' covered up at the base of the infected drive.

 

"The Cyborg Ransomware can be created and spread by anyone who gets hold of the builder. It can be spammed using other themes and be attached in different forms to evade email gateways. Attackers can craft this ransomware to use a known ransomware file extension to mislead the infected user from the identity of this ransomware," writes Diana Lopera on Trustwave blog post explaining about the malware.

Most Read Articles
Best Mobiles in India

Read More About: ransomware windows 10 Computer news

Best Phones

Get Instant News Updates
Enable
x
Notification Settings X
Time Settings
Done
Clear Notification X
Do you want to clear all the notifications from your inbox?
Yes No
Settings X
We use cookies to ensure that we give you the best experience on our website. This includes cookies from third party social media websites and ad networks. Such third party cookies may track your use on Gizbot sites for better rendering. Our partners use cookies to ensure we show you advertising that is relevant to you. If you continue without changing your settings, we'll assume that you are happy to receive all cookies on Gizbot website. However, you can change your cookie settings at any time. Learn more