TeamXRat spreads ransomware via RDP brute-force attacks | Homeland Security Degrees
TeamXRat spreads ransomware via RDP brute-force attacks | Homeland Security Degrees
https://homelandsecurityedus.wordpress.com/2016/10/02/teamxrat-spreads-ransomware-via-rdp-brute-force-attacks/
Malware researchers from Kaspersky have spotted the TeamXRat gang spreading a new ransomware in Brazil via RDP brute-force attacks.
Cyber criminals are using stolen or weak remote desktop credentials to access systems and deliver file-encrypting ransomware.
This is not a novelty in the criminal ecosystem, in March experts discovered a ransomware dubbed Surprise that was installed via TeamViewer and executes from memory.
In October 2015, experts at BleepingComputer blog reported a strain of ransomware dubbed LowLevel04 that was spreading via Remote Desktop and Terminal Service.
The hackers in both circumstances used stolen credentials for RDP software.
The post TeamXRat spreads ransomware via RDP brute-force attacks appeared first on Homeland Security Degrees.
