Security News > 2021 > October > Broadcom Software's Symantec Threat Hunter Team discovers first-of-its-kind ransomware

Broadcom Software's Symantec Threat Hunter Team discovers first-of-its-kind ransomware
2021-10-14 18:12

The new ransomware family, called Yanluowang, appears to still be under development and lacks some sophisticated features found in similar code.

The Symantec Threat Hunter Team at Broadcom Software has discovered what appears to be a brand new family of ransomware named after the Chinese deity that judges the souls of the dead. Yanluowang is the perfect ransomware for the Halloween season, though this particular malevolent digital spirit lacks the subtlety and sophistication of some of its more established brethren.

It's unknown where Yanluowang came from, who's behind it or if it has been used in any attacks other than the one that Symantec responded to against an unnamed "Large organization." Among the files it obtained was code that Symantec said seemed to come from an underdeveloped ransomware family, and they were clued in by some suspicious use of the Active Directory query tool AdFind.

Once installed, the Yanluowang ransomware itself stops all hypervisor VMS running on a compromised machine, ends processes listed in the.

Ransomware isn't a problem set to go away anytime soon.

It'll only get worse as ransomware actors become better at writing code and exploiting vulnerabilities.


News URL

https://www.techrepublic.com/article/broadcom-softwares-symantec-threat-hunter-team-discovers-first-of-its-kind-ransomware/#ftag=RSS56d97e7

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Broadcom 90 4 114 154 66 338
Symantec 80 10 69 77 12 168