Tag

Big Head

All articles tagged with #big head

ransomware-windows-security2 years ago•2 min saved

Big Head Ransomware: Fake Windows Updates Pose Serious Threat

A new ransomware called Big Head is being distributed through a malvertising campaign disguised as fake Microsoft Windows updates and Word installers. The ransomware encrypts files on victims' machines and demands a cryptocurrency payment. Trend Micro has analyzed the ransomware and identified its inner workings, including its ability to display a fake Windows update UI to deceive victims. The malware also deletes backups, terminates processes, and checks for virtualized environments. It disables the Task Manager, aborts itself in certain languages, and incorporates a self-delete function. Trend Micro has detected a variant of Big Head with stealer behaviors and another variant that incorporates a file infector called Neshta. The identity of the threat actor behind Big Head is currently unknown.

via The Hacker News|

#big-head #fake-windows-updates #malvertising

cybersecurity2 years ago•3 min saved

Beware of 'Big Head' Ransomware: Fake Windows Update Alert Threatens Data

Security researchers have analyzed a new ransomware strain called 'Big Head' that is believed to be spreading through malvertising campaigns promoting fake Windows updates and Microsoft Word installers. The ransomware, written in .NET, installs encrypted files on the target system for propagation, Telegram bot communication, and file encryption. It also displays a fake Windows update screen during the encryption process. Multiple variants of Big Head have been identified, with some incorporating data-stealing capabilities and file infection techniques. While not highly sophisticated, the ransomware targets consumers who may be easily tricked or lack cybersecurity awareness. The main author of Big Head is suspected to be of Indonesian origin, according to cyber-intelligence firm KELA.

via BleepingComputer|

#big-head #cybersecurity #encryption