Here’s the ransomeware “note” associated with the Norsk Hydro cyberattack

Here’s the ransomeware “note” associated with the Norsk Hydro cyberattack
Here's the ransomeware

Andrea Carcano from Nozomi Networks told POWER LockerGoga is able to encrypt files that have the following extensions: doc, dot, wbk, docx, dotx, docb, xlm, xlsx, xltx, xlsb, xlw, ppt, pot, pps, pptx, potx, ppsx, sldx, pdf. He also said attackers dropped a “README-NOW.txt” file inside the filesystem. It contains the following message, which essentially extorts users to pay a ransom using Bitcoin cryptocurrency if they want their files back:

Here’s the full story: https://www.powermag.com/cyberattack-debilitates-major-aluminum-and-hydropower-producer/

https://i.redd.it/ekdyv2yq0an21.jpg

submitted by /u/sonalcpatel to r/cybersecurity
[link] [comments]

top scoring links : multi

Related posts

Leave a Comment