• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • March 3rd, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security
Malware

The Nastiest of all Ransomware Mamba Encrypts Entire Hard Drive

September 23rd, 2016 Waqas Security, Cyber Crime, Malware 0 comments
The Nastiest of all Ransomware Mamba Encrypts Entire Hard Drive
Share on FacebookShare on Twitter

Mamba ransomware is currently targeting Windows users in Brazil, India and the United States – Attackers are spreading their campaign through phishing emails.

Ransomware is indeed a growing threat for anything that is connected to the Internet but what Brazil-based security firm Morphus Labs has discovered has surpassed all previous discoveries in this domain. Yes, the IT security researchers at Morphus Labs have discovered a ransomware malware that’s not only locking up victims’ files but also encrypting their hard drives.

Mamba ransomware is attacking computer around the globe; it is a Windows-based ransomware that was discovered to be infecting computers in Brazil, India and the United States.

Renato Marinho, a researcher at Morphus Labs, states that phishing emails are the main cause behind such a massive distribution of Mamba. When a user gets trapped or hooked through phish email, Mamba takes over and infects the entire system then overwrites the Master Boot Record (MBR) of the computer.

the-nastiest-of-all-ransomware-mamba-encrypts-entire-hard-drive

Screenshot of ransom message after Mamba starts booting process

But what makes Mamba the nastiest of all ransomware is that unlike other Regular ransomware, which encrypts files and folders on your PC, Mamba encrypts the entire hard drive.

“Mamba encrypts the whole partitions of the disk. It uses disk-level cryptography and not a traditional strategy of other ransomware that encrypts individual files,” states Marinho.

So when Mamba has encrypted the whole disk’s partitions, you cannot even think about booting into the Windows again otherwise be ready to receive a password prompt. Needless to mention, you will have to pay a ransom in Bitcoin in order to get the password, decrypt the hard drive and use your computer again. The asked ransom is rough $600 or 1 Bitcoin. The ransom note is immediately presented to the victim upon rebooting the computer and it also contains the email address where the victim is supposed to ask for the key.

“You are Hacked ! H.D.D Encrypted, Contact Us For Decryption Key (w889901665@yandex.com) YOURID: 123152”

the-nastiest-of-all-ransomware-mamba-encrypts-entire-hard-drive-2

This is probably the reason why Morphus Labs has named the ransomware after the poisonous snake. Previously, Petya ransomware was considered the nastiest as it also caused disk level damage by encrypting the machine’s Master File Table. On the other hand, Mamba uses open source disk encryption tool dubbed as DiskCryptor for compromising the drive.

We highly recommend visiting Morphus Labs’ post on LinkedIn that covers other technical features of Mamba ransomware.


Did you enjoy reading this article? Kindly do like our page on Facebook, follow us on Twitter and Google + and help us grow.

Suggest ideas, report typos, and corrections to admin@hackread.com

  • Tags
  • Brazil
  • Cyber Crime
  • internet
  • Malware
  • Phishing
  • Privacy
  • Ransomware
  • security
  • Windows
Facebook Twitter LinkedIn Pinterest
Previous article University Student Arrested for hacking computer and changing grades
Next article Blizzard Suffers DDoS Attack; Servers Go Down.. AGAIN
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
Gootloader exploits websites via SEO to spread ransomware, trojans

Gootloader exploits websites via SEO to spread ransomware, trojans

Authentication bypass vulnerability found in NATO, EU approved firewall

Authentication bypass vulnerability found in NATO, EU approved firewall

Data analytics firm Polecat data breach - 30TB of data exposed

Data analytics firm Polecat data breach - 30TB of data exposed

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Gootloader exploits websites via SEO to spread ransomware, trojans
Security

Gootloader exploits websites via SEO to spread ransomware, trojans

Authentication bypass vulnerability found in NATO, EU approved firewall
Security

Authentication bypass vulnerability found in NATO, EU approved firewall

Data analytics firm Polecat data breach - 30TB of data exposed
Leaks

Data analytics firm Polecat data breach - 30TB of data exposed

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us