After warning MacOS users about the new TheFQuest waterproof clothing, the Indian Computer Emergency Response Team (CERT-IN) now wants to alert Windows users to new ransomware called CLOP. This new transmitter is aimed at companies and organizations around the world.
If you use pirated software or download applications from official sources, you should know that it can be expensive later.
“CLOPs are distributed through bogus software updates, Trojans, cracks, private software download sources, and spam emails. In a recent attack on an Indian party organization, the Citrix Netscaler ADC is suspected of being used to carry out a bug attack (CVE-2019-1981) on the VPN gateway. Unfortunately, as of yet, there are no decryption tools available for CLOP ransomware, “cites the CERT-In reference.
After CLOP infects your PC, this ransomware loses information if the rescue negotiation agreement fails.
“The threatening actors behind the club recently stole and encrypted confidential information from various organizations, and after failing to pay a ransom, the stolen information was leaked to its data leak site” CL0P^_- LEAKS “, hosted on the Dark Web. Data backup on leaked information, financial records, thousands of emails and vouchers, etc. ”
CLOP Ransomware uses RSA (Rivest-Shamir-Adelman) encryption algorithms and the generated keys are stored on a remote server controlled by the Clop operator. Updated versions of CLOP have attempted to extend their invading vectors by disabling and removing local security solutions like Windows Defender and Microsoft Security Requirements.
On the other hand, TheFQuest ransomware blocks files in macros and spies on infected systems. ThiefQuest Ransomware not only encrypts files on the system but also steals cryptocurrency wallet files from a keylogger, remote shell, and infected hosts.