Sign In
Learn bits
Science & Tech.
Mahesh

03/08/23 06:26 AM IST

Akira, a ransomware

In News
  • Recently, the central government’s Computer Emergency Response Team (CERT-In) issued an advisory flagging the emergence of a new ransomware called Akira. The Gurgaon police have also raised an alert about Akira.
About Akira
  • Ransomware is essentially a kind of malware — a software used to gain unauthorised access to systems to steal data. This data can then be used by cyber criminals to demand a ransom.
  • Akira targets computer systems that run on Windows and Linux operating systems and is known to spread laterally across networks.
  • According to the advisory issued by the government, Akira steals personal data, encrypts it, and later extorts money from the victims.
  • In case a user refuses to pay, the ransomware actors threaten to release their data on the dark web.
  • Akira is a new family of ransomware that was used for cyber attacks in the US and Canada in March this year.
  • This is different from the Akira ransomware that was flagged by Microsoft Defender Antivirus in 2017
    Akira uses a double-extortion technique to exfiltrate and encrypt data to increase the chances of extracting money from its victims.
  • It was first flagged in April, and a majority of its victims are from the US.
  • The reason you are hearing about Akira right now is because of the number of organisations that it has impacted in the US and the latest advisory from the government.
  • They Delete Windows Shadow Volume copies (a technology by Microsoft Windows that creates backup copies) from the devices using a PowerShell command: essential text-based instructions used to perform tasks, and manage systems, files, and settings.
  • After using the PowerShell command, the ransomware proceeds to encrypt a wide range of data file types and adds ‘.akira’ extension to them.
Impact of Akira
  • The ransomware can lead to the loss of valuable data. In the case of organisations, an attack by Akira can lead to a loss of reputation and integrity.
  • Besides, sensitive information is likely to be lost, misused, or sold on the dark web.
  • It effectively disrupts the operations of any organisation whose network it targets. Moreover, Akira can cause massive financial losses.
  • A news report cited that the ransom amount could go up to a whopping $200,000.
Prevention
  • To combat Akira, companies need to upgrade their cybersecurity practices.
  • They should conduct regular backup practices and secure backups offline or even on a separate network.
  • Experts advise turning on automatic software updates on computers, laptops, smartphones, and other connected devices.
  • Users should refrain from opening suspicious links, and email attachments without checking their authenticity.
  • If someone is indeed attacked, the immediate countermeasures include: detaching infected devices on the same network, disconnecting all external storage devices, and one should also inspect system logs for suspicious activities.
Source- Indian Express

More Related Current Affairs View All

20 Jan

ILO report about international migrants

'International migrants reached 284.5 million, 255.7 million of them belong to the global working-age population (aged 15 and over).' International migrants are defined as perso

Read More

20 Jan

World Economic Forum

'The World Economic Forum (WEF) is holding its Annual Meeting from January 20 to 24 in Davos, Switzerland.' Attendees will include European Commission President Ursula von der L

Read More

20 Jan

SVAMITVA scheme

'Prime Minister Narendra Modi said once property cards under the Centre’s SVAMITVA scheme have been distributed in all the villages of the country, it could unlock economic a

Read More

India’s First Ai-Driven Magazine Generator

Generate Your Custom Current Affairs Magazine using our AI in just 3 steps