S’pore authorities warn of ransomware in form of Windows OS update

Downloading Magniber through a fake Windows OS update link, a pop-up ad or an e-mail file from an unknown sender leads to a ransom note being displayed. — 123rf.com

SINGAPORE: The police and the Cyber Security Agency of Singapore (CSA) have jointly warned of a ransomware variant that masquerades as a Windows operating system update.

The fake update locks up victims' data and then demands a ransom from those who inadvertently download it.

Called Magniber, it gives attackers access to victims’ personal data, such as details of their bank accounts and social media accounts, which the attackers can then use to steal money or impersonate the victims.

Downloading it through a fake Windows OS update link, a pop-up ad or an e-mail file from an unknown sender leads to a ransom note being displayed.

The attackers demand payment in the form of cryptocurrencies such as Bitcoin if victims want to regain access to their data.

Attackers might also gain access to photos and videos stored in the victims’ devices, which can in turn be leveraged to scam or extort money from victims.

In more egregious cases, attackers would even be able to gain remote control of their victims’ devices.

The police and CSA said members of the public should be wary of the ransomware, and make sure their mobile phones, computers and other devices are updated regularly with the latest OS versions from official and verified sources.

People should install antivirus applications that can detect and remove malware, and back up their data regularly in a separate, offline system that remains accessible even during a ransomware attack.

They should also avoid clicking on pop-up ads or opening files from unknown senders.

The police and CSA said they do not recommend paying the ransom as it does not guarantee that the data would be decrypted as promised and would also encourage attackers to continue their criminal activities.

Victims should lodge a police report immediately and can visit this website to check if there are readily available decryptors as a possible solution.

The Magniber ransomware variant first started on Internet Explorer, before spreading through other Internet browsers such as Microsoft Edge and Chrome late last year and this year. – The Straits Times (Singapore)/Asia News Network

Article type: free
User access status:
Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!



Next In Tech News

Salesforce appoints new board directors amid activist investor pressure
Intel's 'historic collapse' triggers selloff in chip stocks
Analysis-Google faces greater threat of forced ad unit sale from U.S. lawsuit
Nissan and Hitachi look to charge elevators with EV batteries
Accused of a shooting, he evaded police for days – even though he’s�on GPS supervision
Londoners are selling homes on WhatsApp in�booming private sales market
TikTok has people ripping open mattresses to look for fiberglass. Don’t, experts warn
State trooper kept logging into a suspect’s Facebook to read messages, US cops say
Australia investigates online influencers over false advertising
Phew! Truck-sized asteroid misses Earth

Others Also Read