Get the latest tech news
Mamona attacks without internet, erases itself, and fools your antivirus: here's what makes it terrifyingly effective
Mamona ransomware drops a note, changes file names, and vanishes
Security researchers are tracking Mamona, a newly identified ransomware strain that stands out for its stripped-down design and quiet, local execution. Experts from Wazuh say this ransomware avoids the usual reliance on command-and-control servers, opting instead for a self-contained approach that slips past tools dependent on network traffic analysis. Wazuh’s approach to detecting Mamona involves integrating Sysmon for log capture and using custom rules to flag specific behaviors such as ransom note creation and ping-based delays.
Or read this on r/technology