Eset desarrolló un análisis sobre el nuevo ataque de ransomware que se inició en Ucrania, y cifró información de máquinas de todo el mundo, afectando compañías de distintas industrias como bancos, red eléctrica y empresas postales, entre otras. El ransomware (secuestro de información) es el término genérico para referirse a todo tipo de software malicioso que le exige al usuario del equipo el pago de un rescate.
“El día martes un nuevo ataque de ransomware dejó en evidencia que sigue habiendo sistemas desactualizados, falta de soluciones de seguridad y de planes necesarios para evitar una infección. Los ataques continúan creciendo y evolucionando, por lo que desde Eset seguimos apostando a que la prevención y la concientización son claves para evitar ser víctimas.”, aseguró Camilo Gutierrez, jefe del Laboratorio de Eset Latinoamérica
Con el fin de despejar todas las dudas en torno a este nuevo ataque global, la compañía comparte el siguiente cuestionario:
¿Cuáles son las características de este ransomware?
Se destacan tres aspectos que lo diferencian:
Cifrado: no solo cifra los archivos con una extensión determinada, sino que además intenta cifrar, generalmente con éxito, el MBR (Master Boot Record), que es el registro principal de arranque.
Propagación: tiene la propiedad de un gusano, o sea, puede propagarse a través de diferentes técnicas por la red logrando infectar nuevos equipos.
Exploit: hace uso de ellos para explotar vulnerabilidades en equipos que no han sido actualizados o no se les han instalado los parches correspondientes.
¿Es igual de poderoso que WannaCryptor?
Ambos tienen el mismo impacto: impiden el acceso a la información almacenada en el sistema. Sin embargo, este nuevo ataque no solo cifra la información que se encuentra en los equipos, sino que, luego de que se reinicia el sistema, deja inutilizable al sistema operativo, por lo que las víctimas se ven obligadas a realizar una reinstalación.
¿Qué es lo que hace exactamente esta amenaza?
Luego de que el ransomware es ejecutado, crea una tarea programada con el fin de reiniciar el equipo en un determinado tiempo, que no suele ser más de sesenta minutos. Además, verifica si existen carpetas o discos compartidos para propagarse.
A continuación, comienza a cifrar archivos que contengan una determinada extensión. A diferencia de la mayoría del ransomware, este código malicioso no cambia o agrega una extensión particular luego de cifrar cada archivo, una técnica muy utilizada por los atacantes para distinguir a los archivos infectados.
Por último, el malware intentará eliminar los registros de eventos para no dejar rastro alguno, como también ocultar sus acciones.
¿Cómo se propaga de un país a otro? ¿Llegó a Latinoamérica?
La propagación es una característica destacable de esta amenaza. Una vez que logra infectar un equipo, intenta extraer las credenciales del usuario para luego usarlas con PsExec y WMIC para realizar una búsqueda de carpetas y discos compartidos, y así propagarse por la red a la cual el equipo esté conectado. De esta manera, logra infectar equipos situados en distintos países y regiones.
Sí, llegó a Latinoamérica, en la mayoría de los casos a equipos de empresas multinacionales conectados en red con los de otras filiales en Europa o Asia, desde las cuales se propagó con su capacidad de gusano.
¿Qué se puede hacer para evitarlo?
Tanto en hogares como en empresas, contar con una solución antivirus es imprescindible. La misma tiene que estar correctamente configurada, contemplar qué puertos están abiertos y por qué.
Además, la red debe estar configurada y segmentada correctamente, y monitorear constantemente el tráfico para detectar algún tipo de comportamiento fuera de lo normal. Es esencial realizar un estudio detallado de la información más relevante y hacer backup de la misma, para que, en caso de que se cifre, haya una forma de restaurarla.
En cuanto a las contraseñas, es primordial llevar una buena gestión de las mismas, ya que si tan solo una de las máquinas infectadas posee las credenciales de administrador, podría infectar toda la red.
Si estoy infectado y no puedo acceder al sistema, ¿cómo tendría que avanzar?
Se podrían utilizar técnicas forenses para intentar correr en memoria otro sistema operativo y de esta forma acceder a los archivos cifrados. Sin embargo, no hay mucho que se pueda hacer más que aplicar el backup, lo cual sería crucial para evitar la reinstalación del sistema operativo.
En última instancia, si no hay backup, los cibercriminales siempre ofrecerán la opción extorsiva, pero desde ESET no sugerimos de pagar el rescate ya que mientras siga siendo rentable, el ransomware continuará creciendo.
¿Cómo están operando los atacantes? ¿Esperan un pago a cambio?
El proceso para recuperar la información es el mismo al que nos tiene acostumbrado este tipo de ataques. Una vez finalizada la infección, el ransomware emite las instrucciones, en donde los atacantes solicitan un pago en bitcoins, en este caso, equivalente a 300 dólares.
Pie de imagen: Aviso de que el equipo ha sido infectado.
¿Por qué se ha vuelto tan común el secuestro de datos?
Dentro de los puntos destacables se encuentran la falta de concientización y educación a nivel seguridad que tienen muchos usuarios y empresas. Una gran parte todavía no conoce el impacto que puede tener en un modelo de negocio un ciberataque hasta que es víctima y se ve obligada a pagar para recuperar su información.
Ante esta cuestión, a pesar de la velocidad con que circulan las noticias sobre ataques informáticos y los problemas que generan, los cibercriminales encuentran una motivación importante para continuar desarrollando nuevas amenazas.
¿El ataque está armado por una persona o un grupo? ¿Se necesitan conocimientos técnicos altos?
Resulta difícil pensar que una sola persona puede estar detrás de este ataque, ya que es una amenaza que incorpora varias técnicas en cuanto a exploits, propagación, y cifrado, así como para evadir medidas de seguridad. Sin embargo, no podemos asegurar cuántas son las personas involucradas en el desarrollo de un ataque de tal magnitud.
¿Se puede dar con los autores del ataque?
No por ahora. A diferencia de una botnet, por ejemplo, no hay un Centro de Comando y Control al que se conecte la amenaza como para rastrearlo y dar con los autores; y de usarlo, seguramente sería un servidor ajeno al cual atacaron para tomar el control y accederían desde TOR, logrando anonimidad. Por otro lado, el pago del rescate se hace en bitcoins y, por las características de esta criptomoneda, se hace prácticamente imposible rastrear su destino final.
Para más información ingrese al portal de noticias de ESET llamado WeLiveSecurity en: https://www.welivesecurity.com/la-es/2017/06/29/todo-sobre-nuevo-ataque-de-ransomware/
Cada decodificador tiene contenido educativo almacenado precargado y 5GB de internet que mensualmente serán recargados para uso y consumo de los contenidos del programa Hogar Conectado.
Logiety construyó su plataforma en IBM Cloud con la ayuda del Global Entrepreneur Program, que provee a las startups acceso a distintos recursos como créditos para la nube de IBM, soporte técnico y mentoría de negocios.
La solución de ingeniería de software integrada de Siemens para la industria automotriz finalmente traslada el desarrollo de software incorporado a su lugar apropiado, como parte integral del ciclo de vida completo del producto.
Xu Qi an felt emotional in his heart, his gaze passed over the long snow white jade neck, and stayed on Luo Yuheng s flowery and jade like face.The next moment, the complete picture of the first floor of the pagoda appeared in his eyes above the head of the Buddhist Bodhisattva, deep in the mist, was a huge, pitch black Dharma statue.
Xu Qi an was stunned for a few seconds, and with great perseverance, he moved his eyes away, grabbed Mu Nanzhi s wrist, and quickly put the bodhi bracelet back on.For Buddhism, martial arts who can step into the fourth rank, of course, also have Buddha nature.
Dongfang Wanqing continued Pingzhou Lilei The state is far away, and it stands to reason that they did not arrive in Leizhou so quickly.Wang Shoufu looked into the distance, seemingly touched.
I ll ask you some more questions, and if you answer me, I ll give you some more money.Now he can understand Lina very well.If he is still in the capital, the Big Three of foodies will become the Big Four.
Chai Jianyuan nodded Then do you know , why does Dad value Chai Xian so much Chai Zhong said as it should Of course it is because Chai Xian is highly talented and qualified.Before that, they were approached by fourth rank spies from Zhangzhou.
Only the impulse to convert to Buddhism remained in their minds.Xu Qi an heard this, and said lightly This is also the reason why King Kong agreed to us to come in.
Chai Xing er held her breath in time and was not invaded by the poisonous gas.Miao Youfang showed a solemn and sincere expression You are my father
Interesting But no, you are too ugly to be my son.
Xu Yuanhuai was eager to try.Several warriors were eager to fight, and they had a strong desire to fight, even surpassing the importance of dragon energy.Chai Xing er could feel those gazes focusing on her at this moment.
The orange cat Ann entered the yard without a sound, and smelled a strong smell of meat.When Xu Qi an was in the outer room, she suddenly realized that when Luo Yuheng talked to him about the seven emotions state yesterday, she would lose her composure and make decisions that were inconsistent with the past.
This.President Yang couldn t hide the shock in his eyes.Xu Qi an lightly kicked it towards the princess.Mu Nanzhi quickly reached out to catch it, and the little white fox complained aggrievedly He bullied me.
One of the mediocre looking men had bright eyes, and even, even looked forward to the next conflict Yuan Yi and other fourth rank masters looked deeply at the man in Tsing Yi, and at the same time paid attention to the actions of the two third ranks, hoping to judge the true attitude of the two third ranks through the encounter of this Tsing clothed man.
what are you doing Dongfang Wanrong s face turned pale.Xu Yuanhuai looked around, but his sister was nowhere to be seen, and let out a long roar of anger.
Du Heng was thinking about this matter until Wang Shuqiu came to pick him up, and even after he returned home.What do you mean He walked closer to the patient. You two also come in.
Well, my eyes are almost blind. Long term or excessive use of lumifen can indeed affect vision, but this effect is reversible and can be recovered after stopping the drug.Standing next to Du Heng, he said softly, After investigation, the woman just now is the sister in law of the canteen contractor.
The temperature keeps rising every day, and the most uncomfortable thing is that the temperature in the morning and evening remains high, with no temperature difference to speak of.If Wang Zhenzhen has no financial problem, then I have no problem here.
Because today is Prozac Weight Loss 2025 Chrissy Metz Weight Loss: How She Did It Friday, he has to give new medical orders to hospitalized patients, and arrangements for discharge should also be made.The prescriptions he usually sees are all 1. 5 grams, or 2 grams, not much more than 3 grams.
Du Jiang looked at Du Heng longingly. Continuous lochia mainly comes from three aspects.He and Zhang Jinlian did not have that kind of friendship.
I rambled on all morning, and it was after 11 o clock that I finally got these things done.However, Du Heng did not smoke and refused. Li Qingde didn t care about this.
The man took out his mobile phone and called directly I scanned one for 200 yuan and said, Look, look now.He took out his mobile phone and transferred 5,000 to Wang Shuqiu, asking her to buy something for himself and Du Xueting.
Du Heng and the other three stopped being stunned, put on their white coats, and took their places.Du Heng drove much faster than Wang Shuqiu. He quickly finished the provincial road and turned directly onto the rural road.
With Du Heng s After confirming the answer, the child s mother finally felt relieved, and then happily carried the child back.The man was almost driven crazy. You obviously made a mistake, why are you still acting like this It s like I couldn t afford to see a doctor, Here, tell me how much it will cost, and I have to let you see me today.
It was quite efficient. It must be fast. There are four recommenders. Lao Song, the new director of your health center, Director Wu of the Pancreatic Surgery Department of the Second City Hospital, Deputy Director Ma of the Provincial First Department of Orthopedics, and Deputy Director Xu of the Gastroenterology Department.
Moreover, the clinic is privately owned, so they also have to pay for food, rent and labor costs, so it is understandable that it is more expensive.I m afraid they won t be able to accept the assessment.
This is why someone who was cured of paralysis before has never been cured of a single case since.Du Heng saw all this and was still very happy. Good level is one thing, professional attitude is another.
After she got out, she had to help the child go through the hospitalization procedures.You must know that he is just an intern and has no qualifications.
Du Heng hesitated for a moment, then reluctantly agreed.This is originally a good thing and everyone is happy.
With a calm mind, communication will be equal. I went to the village today and just came back from work.Okay. After the words fell, Wu Buwei drove his car out of the side door.
At this time, Wu Buwei finally saw Du Heng s cold face, and his mind suddenly cleared.Especially now that Du Heng is not here, their life is even more painful.
Liang Lihai urged Du Heng to wake up again. Without saying any polite words, he turned around and went into the house, picked up his bag, and ran to his house with Liang Lihai.Director, let s take a look, how about it Xu Pinglin s eyes narrowed slightly, but he still Keto Diet Ramadan Streaming Wellness: 3 Netflix Documentaries on Apple Cider Vinegar You Can’t Miss in 2025 readily agreed and said sarcastically, Do you want me to find you a table and a stool If not, don t make excuses.
But even in those dozens of pages, I felt like I was no longer normal.You read that right, the place I want to be transferred to is the Health Center.
You should be well prepared for the meeting then. When the time comes, please report on your work during the recent period.
Seeing this, Xu Qi an was relieved.Sun Xuanji s threat with guns was a countermeasure that Navigating Through the Ocean of Pills for Weight Loss: What Works? Actress Weight Loss Before After had been discussed long ago, and he was responsible for responding outside.The dice player shouted buy and leave.The gamblers bet one after another, their fiery eyes following the dice cup, shouting big or small excitedly.
Sun Xuanji shook his hands and threw out a scroll, which unfolded above everyone s heads and turned into a billowing cyclone, trying to suck everyone below into it.The cesspit.The men rushed into the yard, carrying feces all over their bodies, and rushed to Zhou Sculpting Your Midsection: Effective Strategies to Lose Stomach Fat for Women Best Keto Diet Pillis Dongfang Wanhuo, and a few guards.
Chai Xian s face was ashen, with hatred in his tone and expression Someone pretended to be me and killed people everywhere.Not long after, the fragrance of flowers filled the entire lobby with the dense steam.
People from Leizhou looked disdainful.At this time, the picture changed.Xu Qi an still didn t believe it You really agree with me releasing it Ta Ling monk nodded with a smile.
The poor monk is waiting for you there.He seemed to be teasing everyone.Everyone s eyes naturally fell on Xu Qi an.Liu Yun He pursed his lips tightly, Okay Xu Qi an let go of his hand, Dongfang Wanqing faced him, backed to his own people, and retreated step by step.
Nalan Tianlu s powerlessness.The masters of Buddhism are too perverted, and Wei Yuan s leading ability is too perverted.In the courtyard not far away, there was a bedroom as warm as spring.
I don t know how long it has passed, but suddenly I heard Luo Yuheng s cold voice with a bit of gnashing of teeth If I don t come to you, will you not go back to the room tonight He closed his eyes and said apologetically, Fall asleep.Of course, this will not be recorded in any classics, but it cannot be hidden from any disciple.
As a second rank arhat, a top figure in Buddhism, it is impossible not to break the seal.Xu Qi an examined her carefully, and found that the national teacher s aura was weak, his beautiful eyes concealed fatigue, and blood oozed from under the gorgeous feathers, obviously seriously injured.
Even if they sneak in, they may be slaughtered by monks and made into dog meat hot pot.Canglong nodded slowly We have always believed in the reputation of Buddhism.
Dangdang In the open space at the end of the stone steps in Sanhua Temple, a man holding a mace was hit by several monks with sticks on various acupuncture points all over his body, and his body suddenly became stiff.Although it is reasonable to say that the benefit is maximized.
Dang In the world, Hong Zhong Dalu suddenly burst out.The name of the product is compared to that of a white eyed martial artist.
The flesh body is easy to destroy, but the primordial spirit is hard to destroy.Xu Yuanshuang said.From her words, it can be known that Canglong Qisu did not get benefits from Sun Xuanji.
Zaza.The stone door slowly opened. Holding the torch, Xu Qi an entered the main tomb.The rocks piled up here, as if they had just been mined, left over from the battle between Shenshu and the ancient corpse that day.
Eset desarrolló un análisis sobre el nuevo ataque de ransomware que se inició en Ucrania, y cifró información de máquinas de todo el mundo, afectando compañías de distintas industrias como bancos, red eléctrica y empresas postales, entre otras. El ransomware (secuestro de información) es el término genérico para referirse a todo tipo de software malicioso que le exige al usuario del equipo el pago de un rescate.