Necurs Ransomware-Spreading Botnet Will Now Screengrab Your Desktop Too

The Necurs botnet has recently undergone a resurgence, distributing millions of malicious emails – large swathes of which have most recently been spreading Locky ransomware. It’s also been known to deliver the Trickbot banking trojan, indicating the attackers behind it have their fingers in many pies. But not happy with just that, wow those behind Necurs – a zombie army of over five million hacked devices – are also attaching a downloader with the functionality to gather telemetery from infected victims.

Uncovered by researchers at Symantec, the Necurs downloader can take screengrabs of infected machines and send them back to a remote server. It also contains an error-reporting feature which sends information back to the attackers on any issues the downloader encounters when performing its activities.

You can read more in an article by Danny Palmer in the ZDNet web site at: http://zd.net/2zhHOrT.

While this new variant of the Necurs botnet is a serious problem, it is limited only to Windows computers. It does not seem to affect Macintosh, Linux, iPad, or Android devices.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s