Ransomware spreads to Linux servers

By on
Ransomware spreads to Linux servers

Already a scourge on personal computers, as well as personal websites, ransomware is now going after Linux web servers, according to a new blogpost from Malwarebytes.

This is significant because these servers are depositories capable of not only hosting the malware but distributing it as well.

Three variants of Linux server ransomware have been identified from as far back as August. Malwarebytes claimed it detected a possible new variant, first spotting it on 21 November, that began at first demanding a US$50 bitcoin ransom but then began escalating its demands up to US$999.

However, there's good news for citizens of Russia and the Commonwealth of Independent States (Azerbaijan, Armenia, Belarus, Georgia, Kazakhstan, Kyrgyzstan, Moldova, Tajikistan, Turkmenistan, Uzbekistan and Ukraine). The malware author embedded a message in Russian with an apology to those in that region and offered to de-encrypt for free those sites caught up in the campaign.

This article originally appeared at scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition

Most Read Articles

You must be a registered member of CRN to post a comment.
| Register


You have to spend $10k on new business hardware. What do you buy?
Collaboration hardware
Enormous monitors
New smartphones
New PCs
Minimum spec Mac Pro for $9,990.
We'd fake some paperwork and have a party instead
View poll archive

Log In

Username / Email:
  |  Forgot your password?