New “Snatch” Ransomware Running in Safe Mode, Mutating Fast


The Snatch ransomware, a malware variant first identified in summer 2018, has started exhibiting new techniques including quickly rebooting the computer into “safe mode”, where most security software doesn’t run, before encrypting the victims’ hard drives, British cybersecurity firm Sophos warned today.

The cybercriminals behind the Snatch ransomware are also now also exfiltrating data before the ransomware attack begins, the company noted in a new report, which details the defense evasion and other techniques.

It published the report after being called in to remediate when an unnamed

To see the full content, share this page by clicking one of the buttons below
Click on a tab to select how you'd like to leave your comment

Leave A Reply

Your email address will not be published.