Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ransomware Hits Three Indian Banks, Causes Millions In Damages (malwarebytes.org)

Posted by timothy on from the pretty-soon-talking-real-money dept.

An anonymous reader writes: Ransomware has locked computers in three major Indian banks and one pharmaceutical company. While the ransom note asks for 1 Bitcoin, so many computers have been infected that damages racked up millions of dollars. According to an antivirus company that analyzed the ransomware, it's not even that complex, and seems the work of some amateur Russians.

8 of 76 comments (clear)

  1. HAW HAW by Anonymous Coward · · Score: 4, Funny

    And now those jackasses will have to call tech support in India and the shit will REALLY hit the fan.

    1. Re: HAW HAW by nikkipolya · · Score: 4, Informative

      They have surpassed billion (US) dollar levels. Mumbai is the worlds 9th most costliest city in terms of real-estate prices (http://www.telegraph.co.uk/finance/property/pictures/8892109/In-pictures-The-worlds-20-most-expensive-cities-to-buy-property.html?image=11).

  2. Not too shocking by Shoten · · Score: 5, Informative

    Most of these ransomware packages can traverse laterally within an org; they run in the rights context of the user on the first infected computer and use that to infect other systems, spreading within the local network. So if you don't have your permissions properly set up (having "Domain Users" in the local Administrators group on your desktops as a matter of standard, for example), it's a cakewalk for the malware to hit everyone.

    --

    For your security, this post has been encrypted with ROT-13, twice.
  3. That word by Barny · · Score: 5, Insightful

    "Amateur Russians."

    If they are actually making money from this, then they are firmly in the "professional" bracket.

    --
    ...
    /me sighs
    1. Re:That word by sjames · · Score: 4, Funny

      They are professional malware distributors. Nobody pays them to be Russians :-)

    2. Re:That word by turbidostato · · Score: 5, Insightful

      "Amateur Russians."

      And that means the headline is wrong. It says "Ransomware Hits Three Indian Banks, Causes Millions In Damages" when it should say instead "Incompetence Hits Three Indian Banks, Causes Millions in Damages".

      When some amateurs from a different country can wreak havoc in three different financial institutions the cause is not whatever the amateurs have done but gross incompetence.

  4. What security? by PhunkySchtuff · · Score: 4, Informative

    According to the linked article from Malwarebytes:

    It is different than most of the ransomware present nowadays. Instead of spreading to users and automatically infecting their machines, LeChiffre needs to be run manually on the compromised system. Common scenario of infection is that attackers are automatically scanning network in search of poorly secured Remote Desktops, cracking them, and after logging remotely they manually run an instance of LeChiffre.

    Just how good is their security if something that has to be manually run on each system has completely pwned them?

    --
    Specialist Mac support for creative pros, Melbourne
  5. Fake news by ajyand · · Score: 5, Insightful

    Fake news just based on word of mouth. Take a look at the original article referenced in the referenced article and you'll know that not a single aspect of the news is verifiable. No company has been named. No people have been named. Just one person's statement has been bloated into a short article.