Skip to main content

ALERT : Hackers spreading Locky ransomware by uploading infected .SVG images on Facebook Messenger

ALERT : Hackers spreading Locky ransomware by uploading infected .SVG images on Facebook Messenger



enter image description here


Who Discovered ?

Bart Blaze, a very well known reputed security researcher first discovered this type of ransomware attack which is being conducted via Facebook Messenger. Later, Peter Kurse, another security researcher with extensive experience in investigating cyber-crimes confirmed the news to reporters.
Bart Blaze wrote in his personal blog :
“As always, be wary when someone sends you just an ‘image’ – especially when it is not how he or she would usually behave”.
And Facebook has released the following statement in response to the discovery:
“We maintain a number of automated systems to help stop harmful links and files from appearing on Facebook, and we are already blocking these ones from our platform. In our investigation, we determined that these were not, in fact, installing Locky malware—rather, they were associated with Chrome extensions. We have reported the bad browser extensions to the appropriate parties”.


enter image description here


What is Locky Ransomware ?

The name of this ransomware is LOCKY. What is Locky ? it actually denotes one of the today’s prevalent ransomware families. It was discovered in the mid-February 2016. This file-encrypting epidemic proved to be sophisticated enough to fly under the radar of conventional anti-malware defense. However, Locky is one of the most preferred malicious software used by hackers.

How to spread ?

To spread Locky ransomware hackers are using a downloader software called Nemucod. This downloader is being used by hackers to help the ransomware bypass Facebook security by pretending to be a .svg image file. Hackers is now delivering this downloader software Nemucod through Facebook Messenger.
What is .svg image file ? How hackers spread ransomware through it ? SVG extension file is scalable vector graphics file. It’s based on XML (Extensible Markup Language). So, it’s very easy to implement a set of codes of any harmful programs in it.




However, in this case hackers has embedded JavaScript. When you access this infected vector image file (SVG) then this java-script directs you to a site that seems to be YouTube’s landing page. But, actually it is not real Youtube’s homepage. It’s a clone site developed by hackers. If you look in the url then you will find that it’s 100% different.


enter image description here


However, after loading the fishing site you’ll be requested to download & install a codec so that the desired video could be played. This codec is presented in Chrome extension. If you install this codec chrome extension then the attack shall be distributed to other friends of you via Facebook Messenger. And at the same time this chrome extension will install Nemucod downloader, and instantly Locky will be installed into your system via Nemucod downloader. After that your all personal files on PC will be encrypted (locked) by Locky & it’ll demand some money via Bitcoin to decrypt them.


enter image description here


Source of images used in this article : img-sourec1img-source2img-source3img-source4img-source5

Tags : Facebook, Hacks, News, Ransomware, Security, Malware, 

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 



$3 Donation [Fixed]

$Any Amount





Comments

Back to Top

Popular Posts (Last 7 Days)

Top 10 famous Abstract Art of all the time

Top 10 famous Abstract Art of all the time I love abstract arts. I believe that abstract art is not what you see , it’s what you think. Abstract art is the freedom of using colors, is the freedom of representing your thoughts in colors. Today, here I share top 10 famous abstract arts of all the time. Hope you’ll enjoy them. Number 10 : The Son Of Man by Rene Magritte
image source & credit : LINK Artist: René Magritte
Media: Oil paint
Created: 1964
Period: Surrealism
Subject: René Magritte Number 09 : Garçon à la pipe by Pablo Picasso
image source & credit : LINK Artist: Pablo Picasso
Dimensions: 1 m x 81 cm
Created: 1905
Media: Oil paint
Period: Picasso’s Rose Period
Support: Canvas Number 08 : The Night Watch by Rembrandt
image source & credit : LINK Artist: Rembrandt
Dimensions: 3.63 m x 4.37 m
Created: 1642
Locations: Amsterdam Museum, Rijksmuseum
Periods: Baroque, Dutch Golden Age
Genres: Portrait, History painting Number 07 : Girl with a pearl earring by Johannes Ver…

My Original Abstract Art - “sunless flower garden”

My Original Abstract Art “Sunless Flower Garden”


enjoy :)
Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


Steemit bug found in “TAG”

Steemit bug found in “TAG”
image credit I just found a serious bug on steemit TAG. Today I published a news cum TIL post with 5 tags -
wilt news newslink til steemitnews https://steemit.com/wilt/@royalmacro/what-i-learnt-today-darkweb-raises-funds-for-assassinating-both-donald-trump-and-mike-pence But, my post is visible in only one section in “wilt”. Other tags are not working anymore. I searched frequently in the following sections which I tagged – https://steemit.com/created/newshttps://steemit.com/created/newslinkhttps://steemit.com/created/tilhttps://steemit.com/created/steemitnews My post is invisible in the above sections. It’s only visible in -
https://steemit.com/created/wilt
Update : I just found a solution. I used 4 tags instead of 5. Now, my post is visible to all 4 sections. Tags : Blockchain, Bugs, Cryptocurrency, Steemit,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steem…

My Stereogram Collections - Part 3

what can you see ? reply in post ...







my first post ofstereogram collections - Part 1 my second post ofstereogram collections - Part 2
Tags :Funny, Images, Stereogram This Post Was Published On My Steemit Blog
Earned : $00.00 SBD Converted to USD @1.33$ Rate = $00.00 USD
First Time heard about Steemit ? Click Here To Know...

"The Old Man"- My Original Abstract Art

My Original Abstract Art "The Old Man"



 enjoy :) 
Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


dragon painting - My Original Abstract Art

My Original Abstract Art "dragon painting"



enjoy :)
Tags : Abstract, Art, Design, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


[TIL] How to Draw a Leopard With Pencil - Big Cat

[video tutorial step by step] How to Draw a Leopard With Pencil - Big Cat
This video tutorial was made by Leonardo Pereznieto on youtube. visit : https://www.youtube.com/channel/UCaapxaQKJFJ6XC56CHgeTzw Tags : Art, Drawing, Sketch, Tutorials, Video, Youtube,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


BREAKING NEWS : Millions of Google Accounts Compromised by Gooligan Malware Attack

BREAKING NEWS : Millions of Google Accounts Compromised by Gooligan Malware Attack
image credit Gooligan Malware Attack is compromising Google accounts on android devices including Gmail, Google Play, Google Drive, Google Docs, Google Photos and some other services of Google. This malware is now attacking near 13K Google accounts on android devices per day. Google is aware & release an update recently : “Gooligan has breached over a million Google accounts. We believe that it is the largest Google account breach to date,” Researchers of an IT security firm CheckPoint, have discovered this malware campaign that has been targeting Android users. This malware has already breached more than 1 million Google accounts of users around the world. IT Security firm Checkpoint stated that : “These exploits still plague many devices today because security patches that fix them may not be available for some versions of Android, or the patches were never installed by the user. If rooting is suc…

My Original Abstract Art "At the Dusk"

Here I share my original abstract art  "At the Dusk" enjoy :) Tags :  Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


My Original 3D Art “Absent-minded”

My Original 3D Drawing “Absent-minded”







*All 3D models used in my 3D arts are created with the help of Poser Pro by myself Tags : Art, Drawing, Painting, Sketch,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount