Eldorado Ransomware Strikes Windows and Linux Networks

09-July-24

The sophisticated malware, designed to target both Windows and Linux operating systems, utilizes the programming language Golang to facilitate its cross-platform attacks. The ability to infect more than one OS is always noteworthy as it expands the attack reach. However, it’s the combination of encryption methods and ransomware creation from the ground up that is worth noting. Eldorado ransomware also exhibits advanced capabilities for lateral movement, notably through USB drive checks. This feature allows it to detect and infect removable media, facilitating the spread of the ransomware to other systems when the infected USB drive is connected elsewhere. The malware scans for connected USB drives and automatically copies itself onto them, often using obfuscation techniques to avoid detection by security software.

Read More…