security

How to stop NotPetya from encrypting your files

After being praised for not having a kill switch, it appears the NotPetya ransomware has a weakness after all. When it starts running, the malware checks for its own filename. If found, it then stops encrypting. Researchers are not totally sure they have found the real filename, but so far they found one that works …

How to stop NotPetya from encrypting your files Read More »

Petya variant ransomware spreads fast across Europe

Hot on the heels of WannaCry is a variant Petya Ransomware and it’s spreading across the world. The ransomware first attacked in Ukraine, and reports are now coming in from other countries. The Petya/GoldenEye malware encrypts both the drive and files then demands a $300 ransom in Bitcoin. Cyber security companies have identified the ransomware …

Petya variant ransomware spreads fast across Europe Read More »

PLATINUM hackers bypass Windows Firewall using Intel’s AMT

platinum amt hacking group workflow

Microsoft has discovered a new version of PLATINUM’s file transfer tool. The new tool uses Intel® Active Management Technology (AMT) Serial-over-LAN (SOL) channel for communication. The tool bypasses the operating system. Thus, it renders the firewall useless. However, Windows Defender can apparently detect suspicious uses of the protocol. This is possible through machine learning. It then displays …

PLATINUM hackers bypass Windows Firewall using Intel’s AMT Read More »