AKIRA RANSOMWARE
Current Affairs for 01st August, 2023
AKIRA RANSOMWARE
The Computer Emergency Response Team of India (CERT-In) issued an alert for the ransomware "Akira".
The Akira ransomware is designed to encrypt data, create a ransomware note and deleted Windows Shadow Volume copies on affected devices. The ransomware gets its name due to its ability to modify filenames of all encrypted files by appending appending with the "akira" extension.
It used VPN services, especially when users have not enabled two-factor authentication, to trick users into downloading malicious files. Once it infects a device, it steals sensitive data and then the group threatens to release the data on their dark web if their demands are not met.
Ransomware is typically spread through spear phishing emails that contain malicious attachments in the form of zip/rar filed. Other methods include drive-by-downloads, specially crafted web links in emails, messages etc.
• CERT-In is the national nodal agency for responding to computer security incidents as and when they occur.
Ministry- Electronics and Information Technology