Sign In
Learn bits
Science & Tech.
Mahesh

03/08/23 06:26 AM IST

Akira, a ransomware

In News
  • Recently, the central government’s Computer Emergency Response Team (CERT-In) issued an advisory flagging the emergence of a new ransomware called Akira. The Gurgaon police have also raised an alert about Akira.
About Akira
  • Ransomware is essentially a kind of malware — a software used to gain unauthorised access to systems to steal data. This data can then be used by cyber criminals to demand a ransom.
  • Akira targets computer systems that run on Windows and Linux operating systems and is known to spread laterally across networks.
  • According to the advisory issued by the government, Akira steals personal data, encrypts it, and later extorts money from the victims.
  • In case a user refuses to pay, the ransomware actors threaten to release their data on the dark web.
  • Akira is a new family of ransomware that was used for cyber attacks in the US and Canada in March this year.
  • This is different from the Akira ransomware that was flagged by Microsoft Defender Antivirus in 2017
    Akira uses a double-extortion technique to exfiltrate and encrypt data to increase the chances of extracting money from its victims.
  • It was first flagged in April, and a majority of its victims are from the US.
  • The reason you are hearing about Akira right now is because of the number of organisations that it has impacted in the US and the latest advisory from the government.
  • They Delete Windows Shadow Volume copies (a technology by Microsoft Windows that creates backup copies) from the devices using a PowerShell command: essential text-based instructions used to perform tasks, and manage systems, files, and settings.
  • After using the PowerShell command, the ransomware proceeds to encrypt a wide range of data file types and adds ‘.akira’ extension to them.
Impact of Akira
  • The ransomware can lead to the loss of valuable data. In the case of organisations, an attack by Akira can lead to a loss of reputation and integrity.
  • Besides, sensitive information is likely to be lost, misused, or sold on the dark web.
  • It effectively disrupts the operations of any organisation whose network it targets. Moreover, Akira can cause massive financial losses.
  • A news report cited that the ransom amount could go up to a whopping $200,000.
Prevention
  • To combat Akira, companies need to upgrade their cybersecurity practices.
  • They should conduct regular backup practices and secure backups offline or even on a separate network.
  • Experts advise turning on automatic software updates on computers, laptops, smartphones, and other connected devices.
  • Users should refrain from opening suspicious links, and email attachments without checking their authenticity.
  • If someone is indeed attacked, the immediate countermeasures include: detaching infected devices on the same network, disconnecting all external storage devices, and one should also inspect system logs for suspicious activities.
Source- Indian Express

More Related Current Affairs View All

14 Aug

ABC of Sterilisation

'The Supreme Court has directed Delhi, Noida, Gurgaon, and Ghaziabad authorities to urgently round up and shift stray dogs to shelters, stressing the need to protect children from

Read More

14 Aug

Post and pre-matric scholarships

'The  Union government is considering revising the parental income limit for eligibility in availing post and pre-matric scholarships administered to students from marginalise

Read More

13 Aug

Working of satellite internet

'Satellite internet is revolutionizing how we connect, extending high-speed access to virtually every corner of the globe, regardless of location.' Imagine getting online from t

Read More

India’s First Ai-Driven Magazine Generator

Generate Your Custom Current Affairs Magazine using our AI in just 3 steps