Eset desarrolló un análisis sobre el nuevo ataque de ransomware que se inició en Ucrania, y cifró información de máquinas de todo el mundo, afectando compañías de distintas industrias como bancos, red eléctrica y empresas postales, entre otras. El ransomware (secuestro de información) es el término genérico para referirse a todo tipo de software malicioso que le exige al usuario del equipo el pago de un rescate.
“El día martes un nuevo ataque de ransomware dejó en evidencia que sigue habiendo sistemas desactualizados, falta de soluciones de seguridad y de planes necesarios para evitar una infección. Los ataques continúan creciendo y evolucionando, por lo que desde Eset seguimos apostando a que la prevención y la concientización son claves para evitar ser víctimas.”, aseguró Camilo Gutierrez, jefe del Laboratorio de Eset Latinoamérica
Con el fin de despejar todas las dudas en torno a este nuevo ataque global, la compañía comparte el siguiente cuestionario:
¿Cuáles son las características de este ransomware?
Se destacan tres aspectos que lo diferencian:
Cifrado: no solo cifra los archivos con una extensión determinada, sino que además intenta cifrar, generalmente con éxito, el MBR (Master Boot Record), que es el registro principal de arranque.
Propagación: tiene la propiedad de un gusano, o sea, puede propagarse a través de diferentes técnicas por la red logrando infectar nuevos equipos.
Exploit: hace uso de ellos para explotar vulnerabilidades en equipos que no han sido actualizados o no se les han instalado los parches correspondientes.
¿Es igual de poderoso que WannaCryptor?
Ambos tienen el mismo impacto: impiden el acceso a la información almacenada en el sistema. Sin embargo, este nuevo ataque no solo cifra la información que se encuentra en los equipos, sino que, luego de que se reinicia el sistema, deja inutilizable al sistema operativo, por lo que las víctimas se ven obligadas a realizar una reinstalación.
¿Qué es lo que hace exactamente esta amenaza?
Luego de que el ransomware es ejecutado, crea una tarea programada con el fin de reiniciar el equipo en un determinado tiempo, que no suele ser más de sesenta minutos. Además, verifica si existen carpetas o discos compartidos para propagarse.
A continuación, comienza a cifrar archivos que contengan una determinada extensión. A diferencia de la mayoría del ransomware, este código malicioso no cambia o agrega una extensión particular luego de cifrar cada archivo, una técnica muy utilizada por los atacantes para distinguir a los archivos infectados.
Por último, el malware intentará eliminar los registros de eventos para no dejar rastro alguno, como también ocultar sus acciones.
¿Cómo se propaga de un país a otro? ¿Llegó a Latinoamérica?
La propagación es una característica destacable de esta amenaza. Una vez que logra infectar un equipo, intenta extraer las credenciales del usuario para luego usarlas con PsExec y WMIC para realizar una búsqueda de carpetas y discos compartidos, y así propagarse por la red a la cual el equipo esté conectado. De esta manera, logra infectar equipos situados en distintos países y regiones.
Sí, llegó a Latinoamérica, en la mayoría de los casos a equipos de empresas multinacionales conectados en red con los de otras filiales en Europa o Asia, desde las cuales se propagó con su capacidad de gusano.
¿Qué se puede hacer para evitarlo?
Tanto en hogares como en empresas, contar con una solución antivirus es imprescindible. La misma tiene que estar correctamente configurada, contemplar qué puertos están abiertos y por qué.
Además, la red debe estar configurada y segmentada correctamente, y monitorear constantemente el tráfico para detectar algún tipo de comportamiento fuera de lo normal. Es esencial realizar un estudio detallado de la información más relevante y hacer backup de la misma, para que, en caso de que se cifre, haya una forma de restaurarla.
En cuanto a las contraseñas, es primordial llevar una buena gestión de las mismas, ya que si tan solo una de las máquinas infectadas posee las credenciales de administrador, podría infectar toda la red.
Si estoy infectado y no puedo acceder al sistema, ¿cómo tendría que avanzar?
Se podrían utilizar técnicas forenses para intentar correr en memoria otro sistema operativo y de esta forma acceder a los archivos cifrados. Sin embargo, no hay mucho que se pueda hacer más que aplicar el backup, lo cual sería crucial para evitar la reinstalación del sistema operativo.
En última instancia, si no hay backup, los cibercriminales siempre ofrecerán la opción extorsiva, pero desde ESET no sugerimos de pagar el rescate ya que mientras siga siendo rentable, el ransomware continuará creciendo.
¿Cómo están operando los atacantes? ¿Esperan un pago a cambio?
El proceso para recuperar la información es el mismo al que nos tiene acostumbrado este tipo de ataques. Una vez finalizada la infección, el ransomware emite las instrucciones, en donde los atacantes solicitan un pago en bitcoins, en este caso, equivalente a 300 dólares.
Pie de imagen: Aviso de que el equipo ha sido infectado.
¿Por qué se ha vuelto tan común el secuestro de datos?
Dentro de los puntos destacables se encuentran la falta de concientización y educación a nivel seguridad que tienen muchos usuarios y empresas. Una gran parte todavía no conoce el impacto que puede tener en un modelo de negocio un ciberataque hasta que es víctima y se ve obligada a pagar para recuperar su información.
Ante esta cuestión, a pesar de la velocidad con que circulan las noticias sobre ataques informáticos y los problemas que generan, los cibercriminales encuentran una motivación importante para continuar desarrollando nuevas amenazas.
¿El ataque está armado por una persona o un grupo? ¿Se necesitan conocimientos técnicos altos?
Resulta difícil pensar que una sola persona puede estar detrás de este ataque, ya que es una amenaza que incorpora varias técnicas en cuanto a exploits, propagación, y cifrado, así como para evadir medidas de seguridad. Sin embargo, no podemos asegurar cuántas son las personas involucradas en el desarrollo de un ataque de tal magnitud.
¿Se puede dar con los autores del ataque?
No por ahora. A diferencia de una botnet, por ejemplo, no hay un Centro de Comando y Control al que se conecte la amenaza como para rastrearlo y dar con los autores; y de usarlo, seguramente sería un servidor ajeno al cual atacaron para tomar el control y accederían desde TOR, logrando anonimidad. Por otro lado, el pago del rescate se hace en bitcoins y, por las características de esta criptomoneda, se hace prácticamente imposible rastrear su destino final.
Para más información ingrese al portal de noticias de ESET llamado WeLiveSecurity en: https://www.welivesecurity.com/la-es/2017/06/29/todo-sobre-nuevo-ataque-de-ransomware/
La ciudad de Bad Hersfeld también espera beneficiarse de la prueba PostBOT, ya que se proporcionará un dispositivo a un empleado municipal que distribuye el correo entre las oficinas municipales.
Logiety construyó su plataforma en IBM Cloud con la ayuda del Global Entrepreneur Program, que provee a las startups acceso a distintos recursos como créditos para la nube de IBM, soporte técnico y mentoría de negocios.
Lina just said a joke to her mother in law, who knows her mother in law is so excited.If he couldn t sleep with a woman, being slept with by a man would make up for his shortcomings.
Contraband that is forbidden to flow out He paused for a moment, then shook his body, opened his eyes, showed a look of horror, and slowly spit out Rebellion and rebellion.He is talented and intelligent.He likes to practice martial arts and even study.
Chen is leaving Beijing to go to Yunzhou, what time is it, I am going to see him off.The members of the Earth Book chat group were all awakened, and each took out the fragments of the Earth Book with different emotions to check the news.
Governor Zhang told Yang Yan what happened today, and finally said that when Xu Qi an defended everyone in order to protect everyone, the governor s eyes turned red He was hit by 31 arrows and more than 60 stab wounds.Jiang Lvzhong laughed.The governor with a goat beard and CBD Blue Gummies for ED: A Comprehensive Review of Benefits and Drawbacks What Is Cbd In A Drink elegant temperament waved his hands, frowning The smell of river fish is too strong, and I have no appetite.
When we heard this, most of the anger in our hearts dissipated, and the idea was difficult.Emperor Yuan Jing pondered for a moment, then looked at the eunuch beside him.
Group posting in the middle of the night was a bit immoral.But the old manager was unwilling to take them to the inner courtyard, rubbing his hands together and said Just see here, you can t enter inside, bad luck.
Xu Qi an complained in his heart.He knew that other members of the Tiandihui were also waiting for his opinion, so he passed on a letter I also have a question why can t the sixth rank wizards have the ability to tell the whereabouts of Liang Youping.After examination, he died of a knife wound in the chest, which was suicide.
Only then did he order the commander to open the door.After several defeats, they turned a blind eye to it.
Yes, yes, yes Song Qing nodded again and again He always likes to turn his back to people, and he doesn t speak well.Lao Song was right in saying that he wanted to pass on the news.
Who dared to say that there was nothing wrong with the magistrate s 100,000 snowflakes in three years If Governor Zhang made a move against them, none of them would be able to escape.In these memory fragments, Xu Qi an saw many familiar faces, especially on the eve of the woman s death, during that conversation, he saw the big man talking to Tamraha through the woman s vision.
frybarrierartandseven. pomegranatebundlepotlosediethick Penalty Well reward research Introduction penalty Well reward Peng Shuzong cut Shen Yu research Nao La refused Wu Lian debate cover magnetic cut beam front cut.Please keep warm during this period. Also, don t do Gua Sha massage anymore.
For the first time, he felt that being a doctor might really be more than just checking up, prescribing, and getting medicine.I came here yesterday and prepared to leave today. I didn t expect so many things to happen.
Wang Shuqiu s father was nervous and uneasy, Why do you have to sleep Isn t it okay to sit like this Du Heng shook his head, No, My medicine contains something to soothe Divinity Labs Keto Gummies Reviews: The Divine Route to Ketosis Semanal 7 Dias Dieta Keto Menu the nerves and wake up the brain.It doesn t matter if you don t go. I will help you when there are other suitable activities next time.
Everything was exactly as Du Heng had calculated. When he arrived at Feng Su s ward again, Feng Su had already drank all the medicine.And this bag of medicine did not disappoint everyone.
After a long time, Du Heng raised his head and asked, I can understand the reaction of your Erp Cbd CBD + THC Gummies: 5 Effects You Should Expect publications and the Internet.The hard workers are forced to work hard. The source of intermediation is lying The husband bribed his son, and the workers were lying on the embankment.
Du Heng, you damn bastard. After silently complaining and looking at the patient who had come to him again, Gao Qin had to start over.Go. Du Heng was very lucky along the way. He basically never encountered any red lights, Weight Loss Fiber Where to Buy BioLife Keto Gummies: A Comprehensive Guide and his foot on the accelerator was never removed.
And he found that as long as he held Wu Shengnan in his arms, things were usually not difficult to solve.Wei s frightened eyes, Second, internal heat will definitely lead to excessive liver fire Then his eyes turned cold, It s completely nonsense.
Then let me brag again. So far, more than 200 patients with paralysis, hemiplegia, and general paralysis have been cured by my personal treatment.By the way, you just said that the topic you were integrating was about stroke Yes, just this topic.
Director Liu agreed with Du Heng. Then, Is Keto Diet Good With High Cholesterol Inspirierende Rezepte für das Abnehmen: Schmackhaft und effektiv Dean, your treatment plan is to continue to use traditional Chinese medicine, or to use Western medicine such as vinpocetine Du Heng shook his head gently, Vinpocetine and other drugs that dilate blood vessels are useless now.He made breakfast happily, but did not leave after eating.
Du Heng said angrily, Stop talking nonsense, hurry up Drink it.Du Ping did not look at his brother, but continued to talk to Wu Shengnan, Let me ask you this, what is the process when your brother gets engaged We follow your brother s process and we can t let you be wronged.
Moreover, the third daughter in law is now confused and frightened, and no relatives come to visit her.I won t let you go. Shut up. Lao Tiantian was very angry. Are they just after your registration fee They are doing it for the sake of formality.
Others have to share the rain and dew, otherwise who will help you collect data With that Are you embarrassed But you can t stand up to Li Jianwei directly now.This pre job training is not for the dialectics of paralysis and hemiplegia, which cannot be achieved through short term training, but for Wu Buwei to train everyone s hands on treatment capabilities.
The mother s nutrition during pregnancy was not kept up, and her body was weak for a long time.Penalty Well reward research Incite punishmentOld captive Well reward Ping Shu Zongqie Shen Yu research Nao La refused Won pity debate cover magnetic cut beam front cut.
Director Zheng smiled a little. Dese, also a bit vulgar, said, Your personal short video account has more than five million fans.How can they Maybe you like this shabby city woman and child So, let alone drinking soup, it is not very difficult to smell something.
The movements this time were much more standard and fierce than before.Du Heng chuckled, I guess we came back just after you guys went to bed.
Xu Yang had a good idea.The imprint of the laws in the Fortune Treasure Book is of great benefit to the small world.Luo Hu was recuperating in a treasured place in the small world, and the changes in the surrounding spiritual energy and the power of the stars immediately made him break through the barrier, and he was shocked immediately.
Before Xu Yang could make a move, the golden sword worms suddenly let out a hiss and retreated to the sides quickly.And the red lotus patriarch was even more miserable.
The entire Samsara City was beyond recognition, and all remaining ghost prohibitions were shattered.With two loud bangs, the blood colored barrier vibrated violently and shattered into pieces in the blink of an eye.
The five emperors were also shocked when they heard the words, and hurriedly flew to the space node.After Xu Yang sized it up for a while, he raised his hand and took out another big cauldron.
In the following time, Xu Yang would tour around the city, and occasionally buy some treasures in the city for practice.After the Demon Lord Zizai finished speaking, he grabbed Xu Yang with a movement of his palm, and a huge pressure pressed on Xu Yang, making him unable to move.
It is indeed a rare top grade panacea, but after a while, the red lotus patriarch recovered from his injuries, and his life is not in danger for the time being.Xu Yang pondered for a moment, and immediately flew there.
I want to take him in.After becoming a disciple, he will inherit the position of leader of the Demon Cult, and at the same time betroth his daughter Lei Tingting to him.Even he can barely do it.To do this, he must have a deep understanding of space law.
Seeing the scene around them, Xuan Mingzi and the others were shocked, with cold sweat Proven Ways to Lose Weight Without Exercise: Your Ultimate Guide What Can Vegetarians Eat On Keto Diet dripping down their foreheads, feeling terrified, they raised their hands to thank Xu Yang for saving his life.As the strongest member of the Ancient Mirage Clan, Ancient Mirage Yuanjun has profound attainments in the way of space, even surpassing the current Xu Yang.
He could not help but be overjoyed when his consciousness swept out.With the Agate Ancestor joining, Xu Yang suddenly felt relieved from the pressure, and he couldn t help but let out a sigh of relief.
Raising his hand, he saw that the Dutian Banner was shining brightly, and it was actually attacking the Tianzhu Sword.There are three of them are the elders of the sect Jindan.
In this way, Xu Yang lost a major trump card, and his strength dropped a little.The Yanxue Knife is a middle grade spiritual treasure, and Guan Xing has been cultivating it for many years.
The other party was under the attack of the giant hand of destruction, and the killing Luohu retreated steadily.Liu Xinyu is indeed a talent, and he is really good under his control.
But when everyone thought about it carefully, they immediately realized that there are very few real people in the Tianyuan world, not to mention the great power of refining the void, they will naturally not touch the chains of laws before the void refining period, and it is only natural that no one knows about it.
Such a terrifying scene made Qin Mengyao s expression change for a while.Looking at Yang s appearance, he was golden all over, his skin was covered with mysterious runes, and bells could be heard with just a slight movement.
He stepped into the organ city.Although the organ city is the important place of the Gongshu family, there are other people living in it, not just the Gongshu family, but the Gongshu family.After the explanation, Gu Yanyuan jun s face became serious and she flew towards the main hall.
Seeing this scene, everyone except Xu Yang looked desperate.Many demonized monks around came to kill them, but they were all stopped by the subordinates of the Five Emperors, while the monks of Xunxianmen were killed and scattered without a trace.
The fire surged and turned into a fire phoenix and flew out.This portal is the exit of the phantom formation.This portal is not fixed, and has been wandering around in the dark.
Without money, brothers are still stern and selfless.Human hair murderous intent Following the words of the white clothed warlock, the power of the sky, the terrain, and the power of people condensed into one wave, rushing Abnehmen Ernährungsplan: Effektiv und ausgewogen Keto Christmas towards the black robed man.
Besides, we are not so familiar yet Xu Qi an frowned in embarrassment.We can guess this point, and people from the Witch God Cult can also think of it.
Yunzhou Zhi is the historical book of Yunzhou, which is also very common in Yamen, and there are post stations.Have the sisters heard about it Fuxiang drank some wine, and chatted about the interesting things he heard at yesterday s banquet.
Xu Qi an originally thought that he was the same way, happy and leisurely, and didn t need to pay attention to the entertainment in the officialdom.After that, I will raise the child.Xu Qi an subconsciously glanced Shark Tank ED Gummies: Unpacking the Investment and Product Success Best For Erectile Dysfunction at Li Miaozhen , the latter raised his eyebrows, feeling that there was malice in Xiao Tongluo s eyes.
He was one of the four golden Keto Carrot Cake Cheesecake Bio Lyfe ACV Gummies: Benefits and Reviews gongs wrapped in gauze back then.It s really Henghui, why is it really Henghui How could it be him What does he have to do with the sealed artifacts under Sangbo Not in a hurry at all, and pretending to be sick.
Among them, the Judiciary of the Procuratorate is affiliated to the Metropolitan Procuratorate, so the Procuratorate is most like a dog s leg in front of Governor Zhang.She took off her lowly status and has been serving Mr.
Old man, why is this house so cheap Xu Qi an asked calmly.At this moment, there was commotion in the front hall, as well as the screams of women and men.
Streets, buildings, lakes, bridges, yamen, etc.are all marked.The result is so harmonious Your Excellency, the dinner is ready, shall we go to the backyard together the chief envoy said immediately.
It s impossible for a mere monk to plan such a shocking event.During the discussion, an official from the chief minister came to the government office on horseback, trotted in, stood not far away, cupped his fists and said, Master chief minister, a governor has come to the capital, and he has arrived at the chief minister s office.
Yang Chuannan immediately left the post station, and was ordered to mobilize the army of the guards into the city, cooperate with the Feiyan army, and wiped out the rebels from the other three sects.I didn t look for me so late because of corruption.
It looked like a 3D projection.Xu Qi an raised his head slightly, examining the female ghost from bottom to top.At that time, he and Yang Yan were by his side.It can be said that Nangong Qianrou watched Xu Qi an grow up all the way, so she knows his roots best.
Well, there are 26 lords, and I have returned to the 20th one.To be honest, he has a good impression of No.3. No.3 is not as deep minded as No.
Xu Qi an was To speak, it feels like a knife has been cut across the back.So this matter is actually not complicated, and there is only one promise , He used other methods to hide the evidence.
Eset desarrolló un análisis sobre el nuevo ataque de ransomware que se inició en Ucrania, y cifró información de máquinas de todo el mundo, afectando compañías de distintas industrias como bancos, red eléctrica y empresas postales, entre otras. El ransomware (secuestro de información) es el término genérico para referirse a todo tipo de software malicioso que le exige al usuario del equipo el pago de un rescate.