Norsk Hyrdo Hit by LockerGoga Ransomware

by

March 20, 2019

Norsk Hydro, one of the world’s largest aluminum producers in the world and an electricity utility in Norway, has been hit by ransomware.

The Oslo-based company saw its entire world-wide network compromised by LockerGoga, a new addition to the seemingly endless variety of ransomware that’s prowling around on the internet of things.

Both ArsTechnica and TechCrunch have good write-ups regarding the incident.

As of right now (according to VirusTotal.com) a few of the big anti-virus software solutions have been updated to detect LockerGoga. That list includes our partner Cylance as well as other products like Kaspersky and Symantec.

What is LockerGoga?

Like most ransomware, LockerGoga encrypts data stored on an endpoint and blackmails the user/demands a ransom payment in turn for decryption tools.

The ransomware also adds file extensions (i.e. “.locked!?” or “.locked”) to each encrypted file. It also generates a “README-NOW.txt” file:

lockergoga-readme

Interestingly enough (though I doubt there’s any correlation), the message displayed above is awfully similar to the one included in the RYUK ransomware that took out Jackson County, GA earlier this month. So…  ‍♂️

We’ll keep you up to date regarding any new news as soon as we hear it.

If you haven’t subscribed to our blog you can do, using the CTA located at the top right-hand corner of the page. If you’d like to share your thoughts on any of the topics mentioned in this article feel free to use the comment section below.

 

Carl Keyser is the Content Manager at Integris.

Keep reading

Strong Cybersecurity Postures: How to Unleash their Power

Strong Cybersecurity Postures: How to Unleash their Power

In the vast digital landscape where virtual dragons and sneaky trolls roam a strong cybersecurity posture has never been more important. Imagine a band of modern-day knights led by our protagonist, Alex. Armed with a trusty laptop and a cup of coffee, Alex navigates...

How to Spot a Phishing Attack in 2023

How to Spot a Phishing Attack in 2023

In 2023 cyber threats lurk behind every tree trunk in today's digital jungle, and cybersecurity awareness is more critical than ever. Among the craftiest of these threats are phishing attacks. Phishing attacks are cunningly engineered with social manipulation at their...

How to Choose an IT Consultant in Boulder, CO

Regardless of industry size or type, Boulder IT consultants play a massive role in the way companies in the Boulder area do business. While most companies may have their own in-house IT department, many of these departments are small and cannot handle all the...