Cyber News

Mon, 9 Jan 2017 Ransomware

New KillDisk Ransomware Variant Targets Linux


The latest KillDisk ransomware variant renders Linux machines unbootable after an attack. Unlike infected Windows systems, the ransom message for Linux machines is displayed within the GRUB bootloader. After KillDisk is executed, the bootloader entries are overwritten to display the ransom message. After a reboot, the infected system becomes unbootable.

Victims are not advised to pay ransom in hope of decrypting the encrypted files because the encryption keys are neither saved locally nor sent to a command-and-control (C&C) server.


KillDisk Ransomware Now Targets Linux, Prevents Boot-Up, Has Faulty Encryption

Certis CISCO Terms of Use Privacy Policy © 2017 Quann
Back to top