The ransomware and their reach have been growing to a considerable extent. This is exactly what is shown through the expansion of Magniber Ransomware. Once limited to the South Korean region, the ransomware has now expanded to include the entire Asian region. Essentially spread by Malvertisements, the virus makes the infected computers to redirect to the Magnitude Exploit kit pages. In fact, it should be noted that the Magnitude kit has been one of the oldest malware servicing kits and has been still active.
Initially limited to the South Korean region, the Magniber ransomware has now reached its new, improved version targeting other Asian countries. It now comes with a few improvements that include refined source code, newer obfuscation techniques, and new targets.
Once the Magniber Ransomware gains access to your computer, it begins encrypting all the files and data. All the encrypted files will get a .dyaaghemyextension. The original authors of the code limited the malware to South Korea and had been opting for the country-specific malvertising chains. However, recent reports indicate that malware is becoming one of the global threats. A few recent reports state that the virus has been found to attack the users in regions like Taiwan, Hong Kong, and other countries.
The new version of the ransomware has been updated to include the different languages, and this includes a few Asian languages like Chinese (Macau, China, Singapore) and Malay (Malaysia, Brunei). The developers have also been into improving and refining the ransomware and its code. While the initial version had no options to obfuscation, the new version has now introduced obfuscation and evasive technologies.
“Its source code is now more refined, leveraging various obfuscation techniques and no longer dependent on a Command and Control server or hardcoded key for its encryption routine,” the researchers at MalwareHunterTeam recently indicated.
How to get rid of the Magniber Ransomware attack on your computer? Well, by using a powerful anti-ransomware solution. Services like ZoneAlarm can be one of the best options to address it effectively. Of course, other techniques can include manual intervention to take care of the issues. Regularly backing up your data and files, keeping all your applications and operating systems always updated, and blocking unwanted file extensions can be some of the good remedies you can apply to resolve the issues. The anti-ransomware you use should be capable of controlling the spread of malware through an effective PC shield.
Given the fact that the Magniber Ransomware has now been able to add up Chinese and Malay language settings and has even attacked China, Taiwan, Hong Kong, Macau, Singapore, Brunei, and Malaysia as of now, it may be extremely necessary to check out if the anti-malware solution you choose is capable of handling the threats. A constantly updated database and screening techniques should be the basic features you are expected to have a look at – if you really care for the perfect protection to your computers.
Since the Malware detects the actual targets based on the language settings, you may be at risk if your computers are using the proxies with Chinese or Malay IP. The cybercriminals have been into maximizing their efforts into the reduction of collateral damage. Given the precision with which the ransomware handles its operations, it would be extremely important to take the right type of precautions.
Once the ransomware has attacked your device, the only way would be to pay up the ransom as there is no practical solution available. The best way to stay safe would be to ensure that you have taken precautions by installing appropriate ransomware protection.