Sign In
Learn bits
Science & Tech.
Mahesh

03/08/23 06:26 AM IST

Akira, a ransomware

In News
  • Recently, the central government’s Computer Emergency Response Team (CERT-In) issued an advisory flagging the emergence of a new ransomware called Akira. The Gurgaon police have also raised an alert about Akira.
About Akira
  • Ransomware is essentially a kind of malware — a software used to gain unauthorised access to systems to steal data. This data can then be used by cyber criminals to demand a ransom.
  • Akira targets computer systems that run on Windows and Linux operating systems and is known to spread laterally across networks.
  • According to the advisory issued by the government, Akira steals personal data, encrypts it, and later extorts money from the victims.
  • In case a user refuses to pay, the ransomware actors threaten to release their data on the dark web.
  • Akira is a new family of ransomware that was used for cyber attacks in the US and Canada in March this year.
  • This is different from the Akira ransomware that was flagged by Microsoft Defender Antivirus in 2017
    Akira uses a double-extortion technique to exfiltrate and encrypt data to increase the chances of extracting money from its victims.
  • It was first flagged in April, and a majority of its victims are from the US.
  • The reason you are hearing about Akira right now is because of the number of organisations that it has impacted in the US and the latest advisory from the government.
  • They Delete Windows Shadow Volume copies (a technology by Microsoft Windows that creates backup copies) from the devices using a PowerShell command: essential text-based instructions used to perform tasks, and manage systems, files, and settings.
  • After using the PowerShell command, the ransomware proceeds to encrypt a wide range of data file types and adds ‘.akira’ extension to them.
Impact of Akira
  • The ransomware can lead to the loss of valuable data. In the case of organisations, an attack by Akira can lead to a loss of reputation and integrity.
  • Besides, sensitive information is likely to be lost, misused, or sold on the dark web.
  • It effectively disrupts the operations of any organisation whose network it targets. Moreover, Akira can cause massive financial losses.
  • A news report cited that the ransom amount could go up to a whopping $200,000.
Prevention
  • To combat Akira, companies need to upgrade their cybersecurity practices.
  • They should conduct regular backup practices and secure backups offline or even on a separate network.
  • Experts advise turning on automatic software updates on computers, laptops, smartphones, and other connected devices.
  • Users should refrain from opening suspicious links, and email attachments without checking their authenticity.
  • If someone is indeed attacked, the immediate countermeasures include: detaching infected devices on the same network, disconnecting all external storage devices, and one should also inspect system logs for suspicious activities.
Source- Indian Express

More Related Current Affairs View All

08 Sep

Rajasthan’s coaching centre Bill

'The Rajasthan Coaching Centres (Control and Regulation) Bill, 2025, is a significant piece of legislation passed by the Rajasthan Assembly to regulate and oversee the state's burg

Read More

28 Aug

IADT-1

'Recently, the Indian Space Research Organisation (ISRO) successfully carried out its first Integrated Air Drop Test (IADT-1), a crucial milestone in the preparation for the countr

Read More

28 Aug

H-1B visa changes

'H-1B visa changes 2025: United States Commerce Secretary Howard Lutnick called the popular H-1B visa program a “scam”, saying that American businesses should be focuse

Read More

India’s First Ai-Driven Magazine Generator

Generate Your Custom Current Affairs Magazine using our AI in just 3 steps