Ransomware is indeed a growing threat for anything that is connected to the Internet but what Brazil-based security firm Morphus Labs has discovered has surpassed all previous discoveries in this domain. Yes, the IT security researchers at Morphus Labs have discovered a ransomware malware that’s not only locking up victims’ files but also encrypting their hard drives.
Mamba ransomware is attacking computer around the globe; it is a Windows-based ransomware that was discovered to be infecting computers in Brazil, India and the United States.
So when Mamba has encrypted the whole disk’s partitions, you cannot even think about booting into the Windows again otherwise be ready to receive a password prompt. Needless to mention, you will have to pay a ransom in Bitcoin in order to get the password, decrypt the hard drive and use your computer again. The asked ransom is rough $600 or 1 Bitcoin. The ransom note is immediately presented to the victim upon rebooting the computer and it also contains the email address where the victim is supposed to ask for the key.
“You are Hacked ! H.D.D Encrypted, Contact Us For Decryption Key (firstname.lastname@example.org) YOURID: 123152”
This is probably the reason why Morphus Labs has named the ransomware after the poisonous snake. Previously, Petya ransomware was considered the nastiest as it also caused disk level damage by encrypting the machine’s Master File Table. On the other hand, Mamba uses open source disk encryption tool dubbed as DiskCryptor for compromising the drive.
The best way to protect against Mamba Ransomware is an backup of your entire system with software that backs up every file including your system files to a portable hard drive that is not permanently attached.