With its very first major update in a long time, StopCrypt, the most widespread ransomware, is strengthening its ability to evade detection, posing greater risk to individual users rather than large organizations.
THE ransomwareone of the most prevalent and devastating cyber threats of our time, continue to evolvemaking their detection and their neutralization more and more difficult. If initially these attacks mainly targeted large organizations, for their valuable data and their ability to pay substantial ransoms, we are now witnessing a diversification of targets. Hospitals, in particular, have become prime targets due to the criticality of their services and the wealth of personal data they hold
Since its discovery in 2018, the StopCrypt ransomware, has established itself as a constant threat. Although operating mainly in the shadows, specialized forums have more than 800 pages of discussions concerning him, testify to its sustained activity. Until recently, its updates were limited to fixing critical issues, without significant expansion of its functionality.
The ransomware most used by hackers is even more dangerous than before, impossible to detect
The latest version of StopCrypt innovates with a deployment in several phases, complicating its detection by traditional security tools. By fragmenting, the attack process lleaves fewer fingerprints, making the task more difficult for antivirus solutions and endpoint protections. This multi-step approach allows this ransomware not only to discreetly infiltrate systems but also to stay there avoiding usual detections.
On the same subject – France Travail: the data of 43 million users hacked, you may be one of them
In addition to its sophisticated evasion techniques, StopCrypt continues to primarily target individual usersrequiring relatively modest ransoms – usually up to $1,000 – making payment sometimes more tempting faced with the loss of personal data. This strategy of “small ransoms” contributes to its massive spread, because victims are often less likely to report the attack to authorities and companies no longer want to pay hackers. Faced with this threat, it is crucial to adopt constant vigilance and rigorous cybersecurity practices, such as avoid questionable downloads and maintain regular backups of important data.
Source: bleepingcomputer