Dridex Botnet Hacked for the Third Time in Three Months

A puzzling programmer is having a snicker to Dridex's detriment by and by after he as of late hacked the malware's botnet and supplanted the Locky ransomware with a vacant record that contained the expression "Imbecilic Locky."

Dridex is the name of a managing an account trojan that has been wreaking ruin among clients for as long as years. The name of this malware is additionally used to depict the server framework from which the keeping money trojan spreads, and where it sends all the stolen budgetary information.

At the point when the criminal gathering behind Dridex expanded its operations amid the previous year, in spite of appropriating other malware other than the managing an account trojan, the botnet's name remained.

The latest malware which Dridex administrators began disseminating is called Locky and is one of today's most mind boggling and most prevalent ransomware variations.

Avira security specialists assert that amid the previous days, they've watched the quantity of Locky contaminations go down. The explanation for this had all the earmarks of being a twisted ransomware twofold document, the record which is downloaded naturally utilizing a JavaScript record by tainted casualties from the botnet's servers.

The organization's malware experts observed this document and found that rather than the Locky ransomware source code, this record just contained two words: "Idiotic Locky."

The security firm believes that somebody hacked the Dridex botnet at the end of the day and deliberately supplanted the Locky ransomware with this safe record.

Precisely three months back, Avira additionally uncovered that a white cap programmer had likewise hacked the Dridex botnet and supplanted the Dridex keeping money trojan with an installer for the Avira Free Antivirus.

The occurrence happened again toward the begin of April when security firm buguroo likewise figured out how to hack their way into the administrator board of one of Dridex's sub-botnets. All things considered, the organization recovered information stolen by the criminal gathering and even ordered a pleasant report on Dridex's method of operation.

"I don't trust that cybercriminals themselves would have started this operation due to the potential harm to their notoriety and pay stream," Avira's Sven Carlsen noted. "I likewise wouldn't say that "Locky is dead" after this operation. However, after the case of Dridex and now Locky, it demonstrates that even cybercriminals, bosses of cover, are additionally helpless."