The most common attack vector for Sodinokibi ransomware is utilized through email phishing with malicious attachments. It is followed up by an unsecured RDP-Connection (Remote Desktop Protocol) and security vulnerabilities. The cybergang behind this form of ransomware is extremely proactive in distributing and encrypting the data.

But just like any other ransomware distribution, Sodinokibi can also be spread when you click on a suspicious link and/or download a file from a torrent website. You never know which file downloaded could blow away your entire network security in a matter of hours, if not minutes.

 

Leave a Reply