Nextcry Ransomware Targeting Unpatched Nextcloud Servers

Channel:
United Kingdom quidsup
Subscribers:
54,600
Published on ● Video Link: https://www.youtube.com/watch?v=AnvmHFnVR6o


Duration: 6:01
6,449 views
185

News that new strain of malware calling itself Nextcry has been targeting vulnerable Linux servers running Nextcloud.
It leverages a vulnerability in Nginx and PHP (specifically php-fpm, CVE-2019-11043) and then executes a Python script which then encrypts the first 1,000,000 bytes of files using AES Encryption.

Sources:
https://help.nextcloud.com/t/urgent-security-issue-in-nginx-php-fpm/62665
https://nvd.nist.gov/vuln/detail/CVE-2019-11043
https://www.bleepingcomputer.com/forums/t/707580/help-needed-decrypting-nextcry/
https://help.nextcloud.com/t/nextcry-encrypted-all-files-through-my-instance/64154/43
https://forum.kasperskyclub.ru/index.php?showtopic=64121
https://linuxsecurity.com/features/features/nextcry-ransomware-targets-nextcloud-linux-servers-and-remains-undetected

Wallpaper by Charlie Henson: https://www.pling.com/p/1336103/

Like my channel? Please help support it:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup

Follow me on Social Media
Twitter: https://twitter.com/quidsup
MeWe: https://mewe.com/i/quidsup
Minds: https://minds.com/quidsup

#Nextcloud #Nextcry #Malware



Other Videos By quidsup


2019-12-24The Lack of Spying in NoTrack
2019-12-21Ubuntu Cinnamon Remix 19.10 First Release
2019-12-18Zorin OS Allowing Opt-Out of Telemetry
2019-12-12Microsoft Teams for Linux Preview
2019-12-09Is $1999 Too Much for a Privacy Focused Smartphone?
2019-12-06Zorin OS Has Been Sending Anonymised Telemetry
2019-12-02Cyber Security Advice Has Been Wrong
2019-11-27Glimpse - The New Non-Problematic Fork of GIMP
2019-11-25New Case for my NAS - Cooler Master Silencio S400
2019-11-21The Final Story of Munich’s brief love affair with Linux
2019-11-18Nextcry Ransomware Targeting Unpatched Nextcloud Servers
2019-11-15Elisa Music Player
2019-11-11Microsoft Continuing Embrace Extend Extinguish Against Linux
2019-11-07Reading Through Police Cyber Crime Booklet
2019-11-01Grammarly is a Privacy Nightmare
2019-10-29NordVPN Data Breach
2019-10-26Unity 7 Desktop in Ubuntu 19.10
2019-10-22Ubuntu MATE 19.10 Review - A Bugfix Release
2019-10-20Ubuntu ISO Downloader Tool
2019-10-18Xubuntu 19.10 Review - Now with XFCE 4.14 Desktop
2019-10-17Kubuntu 19.10 Review


Tags:
CyberSecurity
News
Nextcry
Nextcloud
Linux
Quidsup