Dharma – WindowsTechs.com

Iranian hackers used RDP to hit businesses with Dharma ransomware

Posted on August 24, 2020 by Waqas

By Waqas
The hackers using Dharma ransomware are “far behind the level of sophistication of big-league Iranian APTs.”
This is a post from HackRead.com Read the original post: Iranian hackers used RDP to hit businesses with Dharma ransomware
Continue reading Iranian hackers used RDP to hit businesses with Dharma ransomware→

Iran-Linked ‘Newbie’ Hackers Spread Dharma Ransomware Via RDP Ports

Posted on August 24, 2020 by Lindsey O'Donnell

The recent Dharma campaign by Iran-linked script kiddies shows that the ransomware is being spread not just by sophisticated, state-sponsored actors anymore. Continue reading Iran-Linked ‘Newbie’ Hackers Spread Dharma Ransomware Via RDP Ports→

RDP Used by Iranian Actors in International Dharma Ransomware Attacks

Posted on August 24, 2020 by David Bisson

Iranian actors leveraged the Remote Desktop Protocol (RDP) as part of an international campaign to target companies with Dharma ransomware. Group-IB uncovered the campaign while conducting an incident response engagement for a Russian company in June 2… Continue reading RDP Used by Iranian Actors in International Dharma Ransomware Attacks→

Dharma ransomware source code on sale for $2,000

Posted on March 31, 2020 by Danny Bradbury

The source code for ransomware-as-a-service strain Dharma has been put up for sale by hackers. Continue reading Dharma ransomware source code on sale for $2,000→

How ransomware attacks

Posted on November 15, 2019 by John E Dunn

A new report reveals what defenders should know about the most prevalent and persistent malware families. Continue reading How ransomware attacks→

Dharma Ransomware Continues to Evolve

Posted on September 23, 2019 by Tomas Meskauskas

Since 2016, the Dharma family of ransomware has continued to net its operators ransom after ransom. Its continued effectiveness is due to several factors, from the number of attack vectors used to the ransom amount demanded. The ransomware family is w… Continue reading Dharma Ransomware Continues to Evolve→

Ransomware Hit Garage Used by Canadian Internet Registration Authority

Posted on March 28, 2019 by David Bisson

The parking garage used by employees of the Canadian Internet Registration Authority (CIRA) suffered a ransomware infection. At the end of their morning commute on 27 March, employees of CIRA arrived at a parking garage maintained by Precise Parklink. … Continue reading Ransomware Hit Garage Used by Canadian Internet Registration Authority→

New Phobos Ransomware Using Same Ransom Note as Dharma

Posted on January 21, 2019 by David Bisson

A new strain of ransomware known as “Phobos” is using the same ransom note employed by Dharma to demand payment from its victims. Ransomware incident response provider Coveware found that Phobos’ ransom message differs from Dharma&#82… Continue reading New Phobos Ransomware Using Same Ransom Note as Dharma→

Targeted ransomware attacks – SophosLabs 2019 Threat Report

Posted on November 14, 2018 by John E Dunn

This year’s SophosLabs Threat Report is out. We talk targeted ransomware attacks, and in particular, SamSam. Continue reading Targeted ransomware attacks – SophosLabs 2019 Threat Report→

.gdb Files Virus (Dharma) – Remove It

Posted on October 29, 2018 by Tsetso Mihailov

This article will help you remove the latest iteration of the Dharma ransomware virus and show you how you can try to possibly restore files encrypted with the .gdb extension. Dharma ransomware authors continue to target victims by rapidly spreading…… Continue reading .gdb Files Virus (Dharma) – Remove It→