(Bloomberg) -- Russian-speaking hackers may be behind the latest version of file-encrypting malware that attacked a Texas police department and can spread via cloud services, according to data-protection firm Acronis International GmbH.
The new ransomware, named “Osiris” after the Egyptian god of the afterlife, can disseminate itself in corporate networks without being detected and even spread to other organizations via customer-relationship management systems, Acronis said in a statement.
“Certain terms used in the malware coding indicate traces of Russian-speaking programmers behind it,” Nikolay Grebennikov, vice-president at Acronis, said in a phone interview. These include a phrase in the coding that refers to Soviet-era cartoon heroes Cheburashka and Gena.
Typically distributed via spam emails containing the subject headings “Invoice” or “Order Confirmation”, and in an attachment containing the bug, Osiris adds the .osiris extension to the encrypted files and offers victims to pay several thousands to as much as $100,000 in bitcoins to unlock the data, according to Grebennikov.
Cyber-security firms including McAfee Inc. named file-encrypting malware one of the main threats of 2017. A Texas police department lost eight years of evidence because of attack by Osiris last month, while a similar ransomware reportedly left guests of an Austrian hotel locked out of the rooms.
Acronis, based in Switzerland and co-founded by Serguei Beloussov, spun out of U.S. software developer Parallels Inc. in 2003.
Register or login for access to this item and much more
All Information Management content is archived after seven days.
Community members receive:
- All recent and archived articles
- Conference offers and updates
- A full menu of enewsletter options
- Web seminars, white papers, ebooks
Already have an account? Log In
Don't have an account? Register for Free Unlimited Access