Security News > 2020 > June > This new ransomware targets Windows and Linux in surprising ways
Aimed at SMBs, educational facilities, and software companies, the ransomware leverages Java to encrypt server-based files, according to BlackBerry and KPMG. Cybercriminals are always looking for new tricks and techniques to target potential victims without being caught.
That's especially true of ransomware attackers who need to stealthily invade an organization's network to encrypt the sensitive files they plan to hold hostage.
A new ransomware campaign known as Tycoon is using Java to hit Windows and Linux servers.
Seen in the wild since at least December 2019, Tycoon is a multiplatform Java ransomware aimed at encrypting files on Windows and Linux servers.
If a ransomware attack occurs, there are ways that organizations can more effectively and quickly bounce back.
News URL
Related news
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Use Windows event logs for ransomware investigations, JPCERT/CC advises (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)
- New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus (source)
- New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems (source)