Security News > 2021 > January > Researchers Warn of New Ransomware Targeting Enterprise Networks

Researchers Warn of New Ransomware Targeting Enterprise Networks
2021-01-06 17:26

Security researchers have spotted a brand new ransomware family taking aim at corporate networks, warning that professional cybercriminals have already hit multiple organizations with the file-encryption scheme.

The new ransomware family, called Babuk, has claimed at least four corporate victims facing data recovery extortion attempts.

According to researcher Chuong Dong, the ransomware is pretty standard and lacks obfuscation but he warned that the cybercriminals have found success with the use of strong encryption.

Similar to other ransomware families out there, Dong said Babuk uses techniques such as multi-threading encryption.

Babuk uses a proprietary implementation of ChaCha8 encryption, SHA256 hashing, and Elliptic-curve Diffie-Hellman algorithm for key generation and exchange for securing keys and encrypting files.

The ransomware only encrypts local machines if no command line parameters are supplied.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/HdetOM88qUs/researchers-warn-new-ransomware-targeting-enterprise-networks