I write a lot of bad news stories here, it is the nature of a cyber security news site – that’s why we have Because It’s Friday – but here is a good news story when the threat actors get it wrong: First Linux variant of Clop ransomware targeted universities, …
Do you know what “intermittent encryption” is? The ransomware gangs do and they are using it to avoid your detection.
Intermittent encryption is a recently detected method of obscuring malware from anti-virus software and other detection methods. It is not encryption of whole files, byte encryption of bytes within the malware. Research by SentinelOne has shown this evasion technique is being deployed by ransomware gangs in the wild: Crimeware Trends …