Magniber ransomware has previously carried out a series of intrusions, such as through vulnerabilities. The latest method is to spread through fake Windows 10 updates.
According to BleepingComputer, user reports of the new Magniber ransomware have been discovered around the world. The ransomware is disguised as a Windows 10 update package and induces users to download it on some third-party websites. Here are some of the fake malicious updates:
After the ransomware is installed, it deletes the backup files of the encrypted drive and creates a “README” HTML file containing the method to remove the ransom, with the purpose of demanding a ransom, of course.
The ransomware payment website shows that victims are asked to pay about $2,600 (about 17,238 yuan) or 0.068 bitcoins, and if payment is not made within five days, the ransom will be doubled.
Therefore, in order to avoid being invaded by ransomware, it is best for IT home friends not to download unofficial resources such as Windows updates from unreliable websites. You can download them directly from the Microsoft Update Catalog website.