The threat actors behind Nemty ransomware have made modifications to the existing code but have chosen to retain the version number.
The big picture
Nemty is a relatively new malware and seems to be under active development. Vitali Kremez, a security researcher, noticed that certain updates have been made to the Nemty ransomware’s code.
Code modifications
The updated code includes nine targeted processes — WordPad, Microsoft Word, Excel, Outlook Thunderbird email clients, SQL, and the VirtualBox software.
The bottom line
The code modifications and recent Nemty ransomware attacks indicate that the threat actors are hard at work, trying to make this ransomware as powerful as possible.
Publisher