The virus from the 2010s is back on Windows. It infects computers very cleverly


In April, there was a surge in infections of Windows computers with the classic ransomware virus that was popular in the 2010s. This was written in Bleeping Computer.

According to the source, the Trojan was called Magniber and began to spread massively to computers running Windows since the beginning of April this year. Over the past few days, cybersecurity experts, including those from the Bleeping Computer team, have received a wave of complaints about Magniber from owners of infected PCs and laptops. The files on their devices were encrypted, and a text file appeared in the folders demanding a ransom through the Tor system.

Apparently, the ransomware gets on computers under the guise of a Windows 10 update file. It is usually hidden in packages Win10.0_System_Upgrade_Software.msi i Security_Upgrade_Software_Win10.0.msi, which pretend to be cumulative system updates or security patches. They are distributed on sites with pirated content. An inexperienced user might think that this is a real update and download it. Experts still do not fully understand how exactly infected packets get to regular sites.

The site to which the virus “invites” the user is called My Descryptor. On it, the victim can decrypt one file for free, and then contact the hackers, who will tell him the ransom amount and tell him where to transfer it. Usually money is required in the form of cryptocurrency. In most cases, the ransom amount is around $2500 or 0.068 BTC. After 5 days of delay, the amount is doubled.

According to experts, Magniber is considered extremely reliable software, and it is not possible to decrypt its work for free. There is only one way to protect yourself from an attack: to carefully monitor what and where you download, and even more so install it on your PC.


Source: iGuides.ru by www.iguides.ru.

*The article has been translated based on the content of iGuides.ru by www.iguides.ru. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!

*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.

*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!