* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Tuesday, September 30, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    The Police Made Chart History With This 1979 Hit Nearly 50 Years Ago – Yahoo

    How The Police Changed Music Forever with Their Iconic 1979 Hit Nearly 50 Years Ago

    Good Deed Entertainment Acquires Worldwide Rights To Liza Mandelup’s Documentary ‘Caterpillar’ – Deadline

    Good Deed Entertainment Lands Global Rights to Liza Mandelup’s Captivating Documentary ‘Caterpillar

    Danielle Fishel Explains Why Being on “DWTS” Makes Her Feel ‘Like It’s 1994 Again’ Filming “Boy Meets World” (Exclusive) – Yahoo

    Danielle Fishel Explains Why Being on “DWTS” Makes Her Feel ‘Like It’s 1994 Again’ Filming “Boy Meets World” (Exclusive) – Yahoo

    Jussie Smollett Claims He Was ‘Disrespected’ on the ‘Special Forces’ Season Premiere – Yahoo

    Jussie Smollett Opens Up About Feeling ‘Disrespected’ During the ‘Special Forces’ Season Premiere

    TicketSmarter Fall Entertainment Guide – Eastern Illinois University Athletics

    TicketSmarter Fall Entertainment Guide – Eastern Illinois University Athletics

    Cardi B Adds More Dates to Little Miss Drama Tour: ‘Y’all Making Me Work’ – Yahoo

    Cardi B Extends Little Miss Drama Tour: “Y’all Making Me Work

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

    Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

    Four Strategic Signals Technology Leaders Are Tuning In To – SPONSOR CONTENT FROM ARM – Harvard Business Review

    Four Essential Strategic Signals Every Technology Leader Should Watch

    Virginia Tech hosts annual New Music + Technology Festival this week – Cardinal News

    Virginia Tech Kicks Off Exciting Annual New Music and Technology Festival This Week

    Why I gave the world wide web away for free | Tim Berners-Lee – The Guardian

    Why I Decided to Make the World Wide Web Free for Everyone | Tim Berners-Lee

    From shale to steam: Fossil fuel technology boosts clean geothermal energy – Washington Examiner

    From Shale to Steam: How Fossil Fuel Technology is Powering a Clean Geothermal Energy Revolution

    How Sustainable Technology is Shaping a Greener Future – Technology Magazine

    How Sustainable Technology is Driving the Revolution Toward a Greener Future

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    The Police Made Chart History With This 1979 Hit Nearly 50 Years Ago – Yahoo

    How The Police Changed Music Forever with Their Iconic 1979 Hit Nearly 50 Years Ago

    Good Deed Entertainment Acquires Worldwide Rights To Liza Mandelup’s Documentary ‘Caterpillar’ – Deadline

    Good Deed Entertainment Lands Global Rights to Liza Mandelup’s Captivating Documentary ‘Caterpillar

    Danielle Fishel Explains Why Being on “DWTS” Makes Her Feel ‘Like It’s 1994 Again’ Filming “Boy Meets World” (Exclusive) – Yahoo

    Danielle Fishel Explains Why Being on “DWTS” Makes Her Feel ‘Like It’s 1994 Again’ Filming “Boy Meets World” (Exclusive) – Yahoo

    Jussie Smollett Claims He Was ‘Disrespected’ on the ‘Special Forces’ Season Premiere – Yahoo

    Jussie Smollett Opens Up About Feeling ‘Disrespected’ During the ‘Special Forces’ Season Premiere

    TicketSmarter Fall Entertainment Guide – Eastern Illinois University Athletics

    TicketSmarter Fall Entertainment Guide – Eastern Illinois University Athletics

    Cardi B Adds More Dates to Little Miss Drama Tour: ‘Y’all Making Me Work’ – Yahoo

    Cardi B Extends Little Miss Drama Tour: “Y’all Making Me Work

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

    Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

    Four Strategic Signals Technology Leaders Are Tuning In To – SPONSOR CONTENT FROM ARM – Harvard Business Review

    Four Essential Strategic Signals Every Technology Leader Should Watch

    Virginia Tech hosts annual New Music + Technology Festival this week – Cardinal News

    Virginia Tech Kicks Off Exciting Annual New Music and Technology Festival This Week

    Why I gave the world wide web away for free | Tim Berners-Lee – The Guardian

    Why I Decided to Make the World Wide Web Free for Everyone | Tim Berners-Lee

    From shale to steam: Fossil fuel technology boosts clean geothermal energy – Washington Examiner

    From Shale to Steam: How Fossil Fuel Technology is Powering a Clean Geothermal Energy Revolution

    How Sustainable Technology is Shaping a Greener Future – Technology Magazine

    How Sustainable Technology is Driving the Revolution Toward a Greener Future

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Here’s yet more ransomware using BitLocker against Microsoft’s own users

May 23, 2024
in Technology
Here’s yet more ransomware using BitLocker against Microsoft’s own users
Share on FacebookShare on Twitter

Yet more ransomware is using Microsoft BitLocker to encrypt corporate files, steal the decryption key, and then extort a payment from victim organizations, according to Kaspersky.

The antivirus maker’s Global Emergency Response team spotted the malware, dubbed ShrinkLocker, in Mexico, Indonesia, and Jordan, and said the code’s unnamed operators targeted steel and vaccine manufacturing companies, plus a government entity.

Criminals, including ransomware gangs, using legitimate software tools is nothing new — hello, Cobalt Strike. And, in fact, Microsoft previously said Iranian miscreants had abused Windows’ built-in BitLocker full-volume encryption feature to lock up compromised devices. We can recall other strains of extortionware using BitLocker on infected machines to encrypt data and hold it to ransom.

With ShrinkLocker, however, “the adversary took additional steps to maximize the damage from the attack and hinder an effective response to the incident,” Kasperky threat hunters Cristian Souza, Eduardo Ovalle, Ashley Muñoz, and Christopher Zachor said in research published Thursday. The write-up includes technical details for detecting and blocking ShrinkLocker variants.

The Register has reached out to Redmond for comment, and will update this story if and when we hear back.

sad IT pro at computer

Ransomware attacks hospitalizing security pros, as one admits suicidal feelings

READ MORE

Once they’ve got code execution on a victim’s machine, the data thieves deploy ShrinkLocker, which uses VBScript to probe Windows Management Instrumentation to determine the operating system version. It does this so that it selects the correct steps for whichever Microsoft OS is running, allowing it to extort current systems as well as those dating back to Windows Server 2008.

As for those steps, the script performs disk resizing operations (this is the “Shrink” part of ShrinkLocker) on fixed rather than network drives (presumably to minimize detection), rejigs the partitioning and boot setup, ensures BitLocker is up and running, and ultimately encrypts the computer’s storage. See the Kaspersky report for how that works specifically for each flavor of Microsoft’s operating systems.

Additionally, the malware changes the label of partitions to the extortionists’ email, which allows the victim to contact the crooks.

After sending the decryption key needed to access the scrambled drives to a server controlled by the criminals, the malware deletes the key locally, trashing the user’s recovery options, along with system logs that may help network defenders more easily spot or analyze the attack.

Finally, it shuts down the compromised system and displays the BitLocker screen with a message: “There are no more BitLocker recovery options on your PC.” Game over.

Windows users left to fend for themselves after BitLocker patch bungle

Crims abusing Microsoft Quick Assist to deploy Black Basta ransomware

Researchers claim Windows Defender can be fooled into deleting databases

Microsoft slammed for lax security that led to China’s cyber-raid on Exchange Online

In addition to listing ShrinkLocker’s indicators of compromise, and suggesting organizations use managed detection and response products to look for threats, cough, Kaspersky recommends businesses take steps to avoid falling victim to these ransomware infections.

This includes limiting user privileges so they can’t enable encryption features or modify registry keys. And if you do have BitLocker enabled, use a strong password and store recovery keys securely.

Also, monitor for VBScript and PowerShell execution events, and log as much critical system activity as possible to an external repository that can’t be deleted locally.

Plus backup systems and files frequently, store them offline, and make sure to test them to ensure they can be recovered in the event of ransomware or some other security snafu. ®

PS: Still feeling good about that Windows Recall and its encrypted snapshots?

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : The Register – https://go.theregister.com/feed/www.theregister.com/2024/05/23/ransomware_abuses_microsoft_bitlocker/

Tags: Here’sRansomwaretechnology
Previous Post

Microsoft’s deal with UAE’s G42 sparks fears over true destination of AI exports

Next Post

California Bill Would Require New Cars to Beep at You If You Speed

Microplastics and invasive crayfish: emerging interactions and ecological implications from three coexisting species in a subalpine lake – Nature

Uncovering the Hidden Impact: How Microplastics and Invasive Crayfish Interact in a Subalpine Lake Ecosystem

September 30, 2025
Scientists Warn: Bottled Water May Pose Serious Long-Term Health Risks – SciTechDaily

Scientists Warn: Long-Term Health Risks Hidden in Bottled Water

September 30, 2025
You Can Trigger ‘Time Expansion’—Meaning You Can Stretch Seconds and Warp Reality, Scientists Say – Popular Mechanics

Unlock the Secret to Stretching Seconds and Bending Reality: Scientists Reveal How to Trigger ‘Time Expansion

September 30, 2025
Roiserv Lifestyle Services Announces Key Corporate Changes at Upcoming EGM – TipRanks

Roiserv Lifestyle Services Announces Exciting Corporate Overhaul Ahead of Key EGM

September 30, 2025
Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

Saving Energy and Money with Smart Technology – Terms of Service with Clare Duffy – Podcast on CNN Podcasts – CNN

September 30, 2025
Tim and Anita Schoen Endow Sport Psychology Program Director Position – Notre Dame Athletics

Tim and Anita Schoen Endow Sport Psychology Program Director Position – Notre Dame Athletics

September 30, 2025
Dodgers feel an urgency to deliver another World Series title to L.A. – Los Angeles Times

Dodgers Fueled by Determination to Bring Another World Series Title to L.A

September 30, 2025
City of Malibu Eases Event and Sign Permitting Requirements to Support Post-Fire Economic Recovery – City of Malibu

Malibu Simplifies Event and Sign Permitting to Boost Post-Fire Economic Recovery

September 30, 2025
The Police Made Chart History With This 1979 Hit Nearly 50 Years Ago – Yahoo

How The Police Changed Music Forever with Their Iconic 1979 Hit Nearly 50 Years Ago

September 30, 2025
WISD weighs in on Michigan Board of Education’s proposed health education changes – WEMU

WISD Takes Action on Proposed Changes to Michigan’s Health Education Standards

September 30, 2025

Categories

Archives

September 2025
M T W T F S S
1234567
891011121314
15161718192021
22232425262728
2930  
« Aug    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (844)
  • Economy (865)
  • Entertainment (21,739)
  • General (17,331)
  • Health (9,908)
  • Lifestyle (878)
  • News (22,149)
  • People (867)
  • Politics (875)
  • Science (16,075)
  • Sports (21,365)
  • Technology (15,848)
  • World (847)

Recent News

Microplastics and invasive crayfish: emerging interactions and ecological implications from three coexisting species in a subalpine lake – Nature

Uncovering the Hidden Impact: How Microplastics and Invasive Crayfish Interact in a Subalpine Lake Ecosystem

September 30, 2025
Scientists Warn: Bottled Water May Pose Serious Long-Term Health Risks – SciTechDaily

Scientists Warn: Long-Term Health Risks Hidden in Bottled Water

September 30, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version