23 May 20, 06:07
Quote:In order to avoid detection by antivirus software, the operators of the RagnarLocker ransomware have begun installing Oracle's VirtualBox and running virtual machines on the computers they infect before deploying their ransomware.Source(full read)- https://www.techradar.com/in/news/ransom...s-software
The UK-based cybersecurity firm Sophos first spotted this new technique and it shows just how far cybercriminals are willing to go to ensure that their ransomware attacks are not detected by a victim's antivirus or other security software.
![[-]](https://www.geeks.fyi/images/collapse.png)
