Following the host of worldwide ransomware attacks by a malware called WannaCry, a new one called EternalRocks has arrived and is said to be potentially more dangerous than the former. According to a report, researchers have said that ‘EternalRocks’ exploits the same vulnerability in Microsoft Windows that helped WannaCry spread to computers. The malware too uses an NSA tool known as ‘EternalBlue’ for proliferation, according to a report in Fortune. The report added that EternalRocks uses six other NSA tools, including EternalChampion, EternalRomance, and DoublePulsar, which is a part of the infamous ‘WannaCry’. The last 10 days have seen a wave of cyber attacks that have rendered companies helpless around the globe.
Initially, it was just WannaCrypt or WannaCry that spread by taking advantage of a Windows vulnerability that Microsoft released a security patch for in March this year. The malware encrypted files on infected machines and demanded payment for unlocking them. WannaCry had some loopholes that made it easier to slow and circumvent.
Here are two important things you should know about EternalRocks: 1. In its current form, ‘EternalRocks’ does not have any malicious elements. It does not lock or corrupt files or use compromised machines to build a botnet. However, it leaves infected computers vulnerable to remote commands which could ‘weaponise’ the infection at any time. 2. ‘EternalRocks’ is stronger that WannaCry because it does not have any weaknesses, including the kill switch that a researcher used to help contain the ransomware.
You may also like to watch:
In India, over 48,000 attempts of ransomware attacks were detected. 60 percent of the attempts targeted enterprises, while 40 percent were on individual customers, a cyber security firm, Quick Heal Technologies had said. The researcher who found EternalRocks does not claim that it has spread very far yet, but it’s just one example of a wave of new malware based on the NSA-authored exploits. While, consequences have already been serious, and they could get worse so it is important that individuals and companies should be aware and also regularly keep their software and anti-malware updated.