Akira: All You Need To Know About The Data-Stealing Ransomware CERT-In Has Been Warning About

CERT-In, the government's technology agency responsible for defending against cyber threats, has released an essential advisory warning the public about a new ransomware variant named 'Akira'. It represents highly malicious software targeting Windows and Linux-based systems, with the potential to compromise sensitive data and encrypt files, leading to possible extortion attempts.

The advisory sheds light on the sophisticated tactics employed by the 'Akira' ransomware. Perpetrators behind this insidious malware execute a stealthy operation by first exfiltrating crucial information from the victim's system. Subsequently, the ransomware encrypts the data, rendering it inaccessible to the user. Adding to the menace, the hackers engage in a double extortion scheme, coercing victims to pay a ransom in exchange for regaining control of their encrypted data.

In situations where victims refuse to comply with the hackers' demands, CERT-In reveals that the attackers resort to further intimidation. They follow through on their threats by publicly disclosing the stolen data on the dark web, potentially inflicting significant reputational harm and exposing sensitive information.

To counteract this emerging threat, CERT-In strongly advises adopting fundamental online hygiene and protection practices. These measures encompass ensuring all software and operating systems are consistently updated with the latest security patches, regularly scanning systems for malware, and exercising caution when dealing with email attachments or downloading files from untrusted sources.

Additionally, CERT-In emphasises the importance of maintaining offline backups of critical data, ensuring these backups are kept up-to-date to mitigate data loss in the event of a ransomware attack.

Furthermore, the cybersecurity agency stresses the implementation of a robust password policy. Users are encouraged to establish strong and unique passwords for all online accounts, bolstering the difficulty for cybercriminals to gain unauthorised access.

By adhering to these proactive measures, individuals and organisations can fortify their defences against potential risks posed by the "Akira" ransomware and similar cyber threats, ensuring a safer digital environment for all.