While there is no transparent attack vector for this campaign, users are advised to be wary of downloads from unknown or untrusted sources and to avoid cracked software and key generators. Currently, there is no free option available to decrypt files encrypted by this version of Magniber.
Recommendations
- Obtain software from legitimate developers or companies after analyzing customer reviews.
- Establish a comprehensive data backup plan that includes regularly performing scheduled backups, keeping an updated copy offline in a separate and secure location, and testing it regularly.
- Keep systems up to date and apply patches after appropriate testing.
- Use strong, unique passwords for all accounts and enable MFA where available, choosing authentication apps or hardware tokens over SMS text-based codes.
- Maintain robust and up-to-date endpoint detection tools on every endpoint.
- Consider leveraging behavior-based detection tools rather than signature-based tools.
- Report ransomware and other malicious cyber activity to the FBI's IC3 and the NJCCIC.
