S’pore authorities warn of ransomware in form of Windows OS update

Downloading Magniber through a fake Windows OS update link, a pop-up ad or an e-mail file from an unknown sender leads to a ransom note being displayed. — 123rf.com

SINGAPORE: The police and the Cyber Security Agency of Singapore (CSA) have jointly warned of a ransomware variant that masquerades as a Windows operating system update.

The fake update locks up victims' data and then demands a ransom from those who inadvertently download it.

Called Magniber, it gives attackers access to victims’ personal data, such as details of their bank accounts and social media accounts, which the attackers can then use to steal money or impersonate the victims.

Downloading it through a fake Windows OS update link, a pop-up ad or an e-mail file from an unknown sender leads to a ransom note being displayed.

The attackers demand payment in the form of cryptocurrencies such as Bitcoin if victims want to regain access to their data.

Attackers might also gain access to photos and videos stored in the victims’ devices, which can in turn be leveraged to scam or extort money from victims.

In more egregious cases, attackers would even be able to gain remote control of their victims’ devices.

The police and CSA said members of the public should be wary of the ransomware, and make sure their mobile phones, computers and other devices are updated regularly with the latest OS versions from official and verified sources.

People should install antivirus applications that can detect and remove malware, and back up their data regularly in a separate, offline system that remains accessible even during a ransomware attack.

They should also avoid clicking on pop-up ads or opening files from unknown senders.

The police and CSA said they do not recommend paying the ransom as it does not guarantee that the data would be decrypted as promised and would also encourage attackers to continue their criminal activities.

Victims should lodge a police report immediately and can visit this website to check if there are readily available decryptors as a possible solution.

The Magniber ransomware variant first started on Internet Explorer, before spreading through other Internet browsers such as Microsoft Edge and Chrome late last year and this year. – The Straits Times (Singapore)/Asia News Network

Article type: free
User access status:
Join our Telegram channel to get our Evening Alerts and breaking news highlights



Next In Tech News

Google’s cloud customers will learn their Gmail carbon footprint
Cyber pirates prowling ship controls threaten another big shock
Philips sees 'very encouraging' results from tests on recalled ventilators
Renault teams up with Atos on data gathering, which Renault hopes will cut costs
UK green supply chain startup Circulor raises $25mln for US expansion
Sony’s next big thing in tech is helping Honda take on Tesla
Toshiba director Watahiki tenders resignation after shareholder vote -TV Tokyo
Toshiba board gains two directors from activist funds in historic shift
Netflix’s plan to fix its subscription crisis starts in Asia
Perlego, the online library that’s lending students a helping hand

Others Also Read