Fujitsu's description of the unnamed malware made it sound as though it was wormable. After infecting the first machine, it later spread to 48 other business computers, all localized to its internal Japan network.
This malware was not ransomware, but rather a type of attack that used advanced techniques, such as disguising itself in various ways to make it difficult to detect, Fujitsu said.
All of the infected machines were isolated from the network after the malicious activity was detected and connections to external servers blocked, it said. Fujitsu added that the patterns of this malicious activity were also used to improve monitoring and detection measures.
Because there is a possibility that these files may have been taken out illegally, we are assuming that they were taken out and responding to customers accordingly, it said.
Collection
[
|
...
]