SINGAPORE – Police, along with the Singapore Cyber Security Agency (CSA), have jointly warned of a ransomware variant disguised as a fake Windows update.
It locks in victims ’data and then seeks ransom from those who inadvertently take it over.
Named “Magniber”, it gives attackers access to victims’ personal data, such as details of their bank accounts and social media accounts, which attackers can use to steal money or misrepresent victims.
Downloading via a fake Windows OS update link or pop-up ad or email file from an unknown sender results in a ransom message.
Attackers demand payment in the form of cryptocurrencies such as Bitcoin if victims want to regain access to their data.
Attackers can also gain access to photos and videos stored on victims ’devices, which in turn can be used to defraud or extort money from victims.
In more serious cases, attackers could even gain remote control over the victims’ devices.
Police and the CSA said the public should be wary of ransomware and make sure their cell phones, computers and other devices are regularly updated with the latest versions of the OS from official and verified sources.
People should install antivirus applications that can detect and remove malware, and regularly back up their data in a separate, offline system that remains available even during a ransomware attack.
You should also avoid clicking on pop-up ads or opening files from unknown senders.
Police and the CSA said they do not recommend paying a ransom because it does not guarantee that the data will be deciphered as promised, and would also encourage the attackers to continue their criminal activities.
Victims should file a police report immediately and can visit this website to check if decoders are readily available as a possible solution immediately.
The Magniber ransomware variant first started on Internet Explorer, before expanding to other Internet browsers such as Microsoft Edge and Chrome late last year and this year.
Comments are closed.