"Mamba Ransomware Leverages DiskCryptor for Encryption, FBI Warns"

The FBI recently issued an alert about the abuse of the DiskCryptor open-source tool by the Mamba ransomware to encrypt entire drives as well as the operating system. Mamba ransomware, also referred to as HDDCryptor, has been active for nearly half a decade, abusing DiskCryptor for about as long. DiskCryptor was designed to allow users to encrypt all disk drives, including the system partition, with the purpose of bolstering data security. However, Mamba ransomware has been observed abusing the application in numerous attacks against local governments, public transportation agencies, technology services, construction entities, and more. This article continues to discuss the FBI's warning about the weaponization of DiskCryptor by Mamba ransomware, how users could protect themselves from Mamba and other ransomware families, and why victims should not pay ransoms to cybercriminals. 

Security Week reports "Mamba Ransomware Leverages DiskCryptor for Encryption, FBI Warns"