BREAKING

Samsung Galaxy F54 Receives Certification from Bureau of Indian Standards, Expected to Debut Soon 5 days ago
Possible SEO ‎- title: Microsoft’s B2B clients may face AI adoption challenges due to GPT-4’s overwhelming popularity 5 days ago
“Upgrade Your User Experience with Google Pixel 8 Pro’s Enhanced Screen” 5 days ago
“Streamlined Google Messages interface enhances user experience” 5 days ago
Snapchat enhances Family Center with advanced parental controls 5 days ago
“Oppo Set to Unveil Find X6 Series and Oppo Pad 2 on Confirmed Announcement Date Amidst Latest Leaks” 5 days ago
Apple’s iPhone 15 Pro Price Increase Speculations Gain Momentum 5 days ago
Sony Unveils Latest High-End Earbuds: WF-1000XM5 5 days ago
Samsung Galaxy F14 Appears on Geekbench and India Support Page 5 days ago
Top Accessories for Xbox Game Pass Streaming in 2023 5 days ago
Subscribe Now
Live
dangerous

Linux Networks Now Targeted by Windows Ransomware

Max Sherman
03/10/2023 6:34 PM
0
235
linux-networks-now-targeted-by-windows-ransomware
11
Shares
1
1
Ransomware



(Image credit: Pixabay)

Linux Devices Targeted by New Version of Dangerous Ransomware

Cybersecurity researchers have discovered a new version of a dangerous Windows ransomware that is now targeting Linux devices. The threat actors behind the ransomware have made “thoughtful choices” to ensure that the Linux strain targets the right devices and vulnerabilities.

IceFire Ransomware

The cybersecurity researchers from SentinelLabs have confirmed that they have seen a Linux version of the IceFire ransomware for the first time. This variant, dubbed iFire, targets a deserialization vulnerability in IBM Aspera Faspex file sharing software, tracked as CVE-2022-47986.

Big Game Hunting

The researchers have also found the threat actor targeting businesses in the media and entertainment sectors in countries like Turkey, Iran, Pakistan, and the United Arab Emirates. These countries are typically not a focus for organized ransomware actors. Instead, the threat actors considered IceFire a Windows-centric threat group going for “big-game hunting” – targeting large enterprises with double extortion tactics, using countless persistence mechanisms, and evading analysis by deleting log files.

Compared to Windows, Linux is a more difficult operating system to infect with ransomware. The researchers added that this is particularly difficult to pull off at scale. “Many Linux systems are servers,” they say. “Typical infection vectors like phishing or drive-by download are less effective. To overcome this, actors turn to exploiting application vulnerabilities, as the IceFire operator demonstrated by deploying payloads through an IBM Aspera vulnerability.”

Despite the challenges, threat actors are increasingly looking to deploy ransomware to Linux devices. The researchers conclude that the evolution of IceFire is just another argument proving the case. The groundwork for Linux-targeting ransomware was laid in 2021, but the trend accelerated in 2022 with BlackBasta, Hive, Qilin, ViceSociety, and others, started targeting the operating system, as well.

Best Endpoint Protection Services

  • Here’s our rundown of the best endpoint protection services right now

Sign up to the Tech Leaks newsletter to get all the top news, opinion, features, and guidance your business needs to succeed!

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Max Sherman

Max Sherman

Leave A Reply

Your email address will not be published. Required fields are marked *

Related Posts

No Content Available
© 2023 TechLeaks - Latest Technology Leaks And Tutorials For Startups
Subscribe Now
© 2023 TechLeaks - Latest Technology Leaks And Tutorials For Startups