Get the latest tech news

Mamona attacks without internet, erases itself, and fools your antivirus: here's what makes it terrifyingly effective


Mamona ransomware drops a note, changes file names, and vanishes

Security researchers are tracking Mamona, a newly identified ransomware strain that stands out for its stripped-down design and quiet, local execution. Experts from Wazuh say this ransomware avoids the usual reliance on command-and-control servers, opting instead for a self-contained approach that slips past tools dependent on network traffic analysis. Wazuh’s approach to detecting Mamona involves integrating Sysmon for log capture and using custom rules to flag specific behaviors such as ransom note creation and ping-based delays.

Get the Android app

Or read this on r/technology

Read more on:

Photo of internet

internet

Photo of attacks

attacks

Photo of antivirus

antivirus

Related news:

News photo

The Open-Source Software Saving the Internet From AI Bot Scrapers

News photo

How Let's Encrypt made the internet safer and HTTPS standard - and free

News photo

Jack Dorsey just released a Bluetooth messaging app that doesn't need the internet