New ransomware uses RDP

By /

One of the latest varieties of ransomware has been identified by Lawrence Abram as LowLevel04, and it’s spreading via Remote Desktop Services/Terminal Services and then encrypting files on the targeted computers and demanding payment in Bitcoin. The good news is that the malware (at least in this iteration) doesn’t delete the Shadow Volume copies, which means there’s hope of recovering the files without paying the ransom.

Read more about it:

http://www.scmagazine.com/ransomware-using-remote-desktop-to-spread-itself/article/448398/

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Static vs Dynamic IP Address

Static vs Dynamic IP Address

Most people are familiar with Internet Protocol (IP) Addresses, but many people don’t know you have 2 types. In this article, you’ll learn about static…

Read More »

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top