SynAck Ransomware Circumvents Antivirus Through Doppelgänging Technique

Researchers have discovered what is believed to be the first case of ransomware using a sophisticated technique called Doppelgänging to avoid detection by antivirus solutions.

Security experts from Kaspersky Lab said in a security notice that a variant of the SynAck ransomware has been spotted in the wild using this sophisticated circumvention technique.

SynAck is nothing new. The ransomware was discovered in 2017 and differs from standard ransomware families in several ways. While SynAck employs the standard recipe of infection, encryption, and a blackmail notice demanding money in return for a decryption key, the ransomware does not use a payment portal.

Read more at ZDNet

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio