2017 has been a year of global ransomware spread, especially with the global outbreak of the Eternal Blue ransomware worm (WannaCry) in May and the subsequent Petya virus, which was prevalent in Ukraine and elsewhere, bringing attention to ransomware to an unprecedented level.

But the ransomware virus didn't fade with the passing of 2017. Nearly a third of the way through 2018, ransomware attacks continue unabated, and for now, ransomware remains a major cybersecurity cancer, and its dangers still cannot be ignored.

Ransomware active throughout 2017: over 5 million computers attacked

According to the 2017 Ransomware Threat Situation Analysis Report released by the 360 Internet Security Center, a total of 183 new ransomware variants were intercepted by the 360 Internet Security Center on the computer side in 2017. At least 5 million computers across the country have been hit by ransomware attacks, with an average of about 14,000 domestic computers being hit by ransomware every day.

In terms of timing, ransomware attacks peaked at 811,000 in April, with an average of 27,000 computers attacked per day, largely due to the public disclosure of the NSA vulnerability "Eternal Blue" by the Shadow Brokers group, which many ransomware exploited to launch attacks.

Figure: 2017 Ransomware Posture Analysis

And the massive ransomware attack that occurred in October and November was the second peak of attacks in 2017, mainly because of the Arena and Java ransomware viruses that emerged during this time. The attackers are skilled and are releasing the virus through the server, causing the number of computers attacked to skyrocket to an average of 31,000 per day.

Low threshold for poisoning, many tricks: 2018 ransomware makes a comeback

Recently, the ransomware virus has not created the same global sweep as WannaCry last year, but there have been several attacks. And, compared to last year's traditional forms of exploiting exploit weapons, emails and compromised servers, several ransomware attacks that have popped up this year are more diverse and have infiltrated office software, games and other Trojans that are more defensible.

During the Chinese New Year, for example, there were two nasty incidents in China where ransomware viruses invaded hospitals, paralyzing their systems, preventing patients from receiving normal medical treatment and requiring them to pay hundreds of thousands of yuan worth of bitcoin to restore normalcy.

Photo: ransomware virus invades hospital

In addition, the 360 Cloud Security System has also recently discovered the ransomware virus AXX, which uses the file protection tool AxCrypt as an accomplice, and the ransomware virus Magniber, which does not seek money but only allows users to play Jedi survival for one hour to unlock it.

Photo: Magniber ransomware virus hit screen

The above is just the tip of the iceberg of this year's ransomware attacks, which continue to proliferate due to the increasingly low threshold for virus production today. Security experts here remind the majority of Internet users, in order to prevent infection with this various ransomware virus, should develop the habit of backing up files, avoid browsing dangerous websites, unfamiliar e-mails also need to be beware, keep the 360 security guards and other security software normally open. This software blocks dangerous links, malicious emails, web page hang-ups and more for a comprehensive defense against ransomware.

For system and common software vulnerabilities, 360 Security Guard not only patches the user first, but also immunizes the system against vulnerabilities without patches. In addition, 360 Security Guard also pioneered security technologies such as intelligent trapping, behavior tracking, file format analysis, and data stream analysis to provide comprehensive defense against all kinds of ransomware viruses, even the latest ransomware viruses that appear, as long as it has the behavior of damaging computer data will be intercepted.

In addition, users can open 360 Security Guard "Anti-Ransomware Service", once the computer is infected by ransomware, you can apply for ransom payment through 360 Anti-Ransomware Service to minimize financial losses. In addition, if you are infected with a ransomware virus, you can also use 360 Security Guard "Decrypt Master" to scan and recover the trapped documents with one click. As the world's largest and most effective ransomware recovery tool, 360 Decryptor can crack more than 100 kinds of ransomware viruses at present.

Recommended>>
1、One of the Top 10 Greatest Storage Inventions in IT History is so awesome
2、btcdotoken trading platform development
3、Intellectual Property Office Steady growth of invention patents in Chinas artificial intelligence
4、World products to China jewelry national inspection services to the world V NGTC and GIT jointly interviewed by Chinese and Thai media
5、Did the app you deleted unbundle your bank card

已发送

发送中