Stealthy “Netwalker” Ransomware Using Windows Explorer And “Art of Deception” To Infect Enterprise Networks

Researchers at Quick Heal Security Labs have discovered a new strain of the “Mailto” ransomware nicknamed “Netwalker” that uses the art of deception to evade detection.  The new strain targets Enterprises users and Windows devices using Explorer.exe  (not Internet Explorer) to do its evasive action act through a form of “process injection.” This is a slight deviation from methods commonly used by most ransomware relying on process hollowing by hiding in the computers suspended “processes.” 
Read More

Please follow and like us: