MILLIONS of Windows 10 users have been warned after fake updates could infect their computer with ransomware.
The Magniber ransomware has targeted hundreds of users across the world appearing as a normal Windows security update.
1
A number of users sought help from the BleepingComputer, reporting their computer got infected after they installed what they thought was a Windows 10 cumulative or security update.
While the virus can be distributed under different names Win10.0_System_Upgrade_Software.msi and Security_Upgrade_Software_Win10.0.msi appear to be the most common.
Based on data the campaign to distribute the ransomware started last month around April 8.
Once the ransomware is installed on the computer, it deletes shadow volume copies and encrypts files.
It also creates ransom notes named README.html in each folder with instructions on how to proceed to payment through the Magniber Tor payment site.
It is titled “My Decryptor” and it allows users to decrypt one file for free, contact “support” or decide the ransom amount.
The outlet reports that the majority of demands have been $2,500 or 0.068 bitcoins.
Sadly the campaign targets mainly students rather than companies which means many of the victims cannot afford the ransom.
Most read in The Sun
Microsoft, the developers of Windows 10, has updated their support pages with strategies for combating the latest wave of ransomware attacks.
Microsoft advises to use their anti-malware software Windows Defender but notes “there is no one-size-fits-all response if you have been victimized by ransomware.”
The company has seen a majority of ransomware attempts on Windows users in the United States.
One easy tip for combating ransomware is to back up files on an external hard drive.
Microsoft isn’t the only company addressing widespread hacks.
Meta announced they’ve observed a rise in hacks and hack attempts in the months since the conflict in Ukraine began.
We pay for your stories!
Do you have a story for The US Sun team?
