Skip to main content

Phobos Ransomware Creates Massive Security Exploit

By February 13, 2019June 22nd, 2022No Comments

Phobos Ransomware Creates Massive Security Exploit

Phobos is a new strain of ransomware that affects victims for longer, harming company productivity.
[vc_single_image image=”27039″ img_size=”full” alignment=”center”]

There is a new, powerful strain of ransomware making the rounds. While we don’t have all the details yet, the effects on victims is grim. This nasty piece of work is called Phobos and first appeared in December 2018.

Researchers at CoveWare have been dissecting and sifting through the code. They are finding a number of similarities with the Dharma strain of ransomware, which has plagued businesses around the world in recent years.

It would be a mistake, however, to call it a Dharma clone. Phobos also contains elements of the CrySiS ransomware. While CrySiS is itself a relative of Dharma, Phobos deserves recognition as its own variant, as it combines features and functionality in a new way.

At the end of the day though, it still spells bad news for business owners. Anyone unfortunate enough to have their system infected by the malware will find all their files encrypted, their extensions changed to Phobos, and will receive a popup message demanding payment in Bitcoin to get their files back.

Phobos Ransomware Costs

[vc_line_chart type=”line” style=”modern” x_values=”8/18; 9/18; 10/18; 11/18; 12/18″ values=”%5B%7B%22title%22%3A%22Phobos%22%2C%22y_values%22%3A%221230%3B%201020%3B%201145%3B%201276%3B%201104%22%2C%22color%22%3A%22orange%22%7D%2C%7B%22title%22%3A%22All%20Ransomware%22%2C%22y_values%22%3A%225803%3B%204395%3B%205887%3B%207013%3B%206837%22%2C%22color%22%3A%22blue%22%7D%5D”]
Phobos Ransomware Average Ransom vs. Ransomware Marketplace

While the Phobos ransomware payments are lower than average, the length of time to a full recovery is much longer than other attacks due to the complicated nature of the decryption tool provided by hackers.

[vc_separator css=”.vc_custom_1550097779940{padding-bottom: 15px !important;}”]

Average Length of Phobos Incident

[vc_line_chart x_values=”Phobos; All Ransomware” values=”%5B%7B%22title%22%3A%22Incident%20Length%20in%20Days%22%2C%22y_values%22%3A%228%3B%206%22%2C%22color%22%3A%22turquoise%22%7D%5D”]

The amount of time from reporting to full data recovery of a Phobos Ransomware incident.

[vc_separator css=”.vc_custom_1550097779940{padding-bottom: 15px !important;}”]

Stop Any Breach with One Tool

[vc_single_image image=”26366″ img_size=”full” alignment=”center”]

As always, a good defense is the best offense. Realtime Security collects live, accurate data from thousands of devices in under 10 seconds then instantly detects running .exes, malware or viruses and kill those processes before they spread.

[vc_btn title=”Start a Free Trial of Syxsense” color=”warning” size=”lg” align=”left” link=”url:%2Fsyxsense-trial|||”]

Leave a Reply