HelloXD, a ransomware version that targets Windows and Linux systems, also instals a backdoor to provide permanent remote access to affected hosts.
“Unlike other ransomware families, this ransomware family does not have an active leak site; instead, it prefers to direct the impacted victim to negotiations through Tox chat and onion-based messenger instances,” Palo Alto Networks Unit 42 security researchers Daniel Bunce and Doel Santos wrote in a new report. Read More…