"Kaspersky products have blocked several waves of Globelmposter ransomware attacks since June 16, 2019," warned security experts.
Malicious application is Rabbit4444.exe or Dragon4444.exe. The first attacks aimed at Romania occurred on the night of 18-19 June. Kaspersky security products detect this threat as Trojan-Ransom.Win32.Purgen.aho, Trojan.Win32.Zudochka.id and Trojan-Ransom.Win32.Encoder.crj, "added security experts.
Worldwide has a number of Companies and hospitals have become victims of Globelmposter ransomware In Romania, this extortion program has chosen to sacrifice at least one hospital, with experts agreeing that there may be more targeted institutions, says Kaspersky researcher.
Also remember that ransom attacks are more dangerous than conventional cyber attacks "Allows full control of the target network before launching the largest malicious program," concluded security experts.
How to execute an extortion virus?
Extortionist attacks are almost always the same. Guides all the data stored on the hard drive, for their access the attacks require a ransom, even a few thousand kronor.
Cybercriminals usually try to get the impression that they are coming to their files after being fined. It was allegedly charged for the use of illegal software, etc. Therefore, many have already paid them ransom.
But even after the ransom payment, users do not get their information. Instead of ransom, it is necessary to uninstall the virus from your computer. However, in most cases, it is impossible to back up data available