There are a lot of threats that can put our devices at risk. One of the most dangerous and widespread threats is known as ransomware. This is what cybercriminals use to hijack the victims’ files to ask for a ransom so they can be recovered. This is a really serious problem. Today we will talk about a new ransomware variant that uses the .FOX extension. Additionally, this variant goes through a complex process to make sure it infects and encrypts every file successfully.
FOX, a new ransomware variant
The fact that this variant is focused on infecting every file is a good thing for users because the entire PC takes longer to get infected. This means there is more time to act in case the FOX ransomware infects our PC.
This new ransomware variant was discovered by security researcher MalwareHunterTeam and is installed through computers that run Remote Desktop Services and are openly connected to the Internet.
The attackers scan ranges of IP addresses to find open RDP services and then brute-force the password.
This ransomware is a variant of the Matrix ransomware. It uses a server to communicate. Once it is executed, it will connect to the server and start logging various stages of the encryption process.
Two console windows will display the current progress of the encryption. One window shows network addresses that were scanned and the other window displays the status of the encryption process.
We have to mention that at this time this ransomware variant cannot be decrypted for free. This is why we have to be really careful and take measures to avoid getting infected by FOX or any other ransomware variant.
How to protect ourselves against the new ransomware variant
The first thing to do to protect ourselves against ransomware in general is to create backups. This is really important. As we know, this type of malware encrypts all of our files. It forces us to pay a ransom if we want to get out files back. If we have backups, this problem is less serious because our most important files are safe.
Additionally, having security programs and tools is essential. This is how we can protect our files against possible malware threats. There are a lot of options regardless of the OS or platform we are using.
Also, these programs must be kept up to date. Sometimes there are vulnerabilities that are fixed with security patches. Therefore, it is important for our PC to always be up to date. It is also important to update every app we have installed.
Lastly, common sense. In most cases, malware require users to do something. We can get malware via email or by downloading something from an unsafe webpage. We have to pay attention to possible fraudulent emails and the sites we download content from.