Categories: Bitcoin Business

Bitcoin Ransomware Education – Uiwix

Click here to view original web page at

People who assumed WannaCry was the last ransomware to take advantage of NSA exploits are unfortunately sorely mistaken. A new type of ransomware is already making the rounds and infecting computers all over the world. Uiwix is a very real threat and should be considered as such. Interestingly enough, this ransomware also makes use of the EternalBlue SMB exploit.

Uiwix Ransomware Herald The Next Wave Of Global Attacks

It is anything but surprising to learn new ransomware types are making sue of the leaked NSA tools. Uiwix is no different in this regard, as it uses the exact same vulnerability exploited by the WananCry ransomware. Any victim of the WannaCry attack may want to take the necessary security precautions to avoid getting infected with Uiwix.

What this new type of ransomware does is encrypt computer files and appends its own unique file extension. Victims will also see a ransom note appear on their computer. Several victims have already reported this ransomware to ID-Ransomware in the hopes of getting files decrypted free of charge. So far, that is virtually impossible, as there do not appear to be any samples of this ransomware available to security researchers. It is possible they may need to set up a honeypot server to change that situation.

However, it looks like that situation may come to change very soon. An unrelated ransomware distribution campaign is effectively pushing the EternalBlue SMB exploit into the spotlight. In fact, it is possible the WannaCry attacks may be ultimately responsible for thwarting future attempts at trying to use the exact same exploit. That is, assuming security researchers can come up with a proper solution to fight SMB exploits and decrypt the ransomware in the end.

As most people should be aware of by now, the EternalBlue SMB exploit gives assailants access to vulnerable computers. Even though Microsoft has patched the SMB vulnerability in March of 2017, a lot of computers remain vulnerable to it. This is mainly due to system administrators not performing regular Windows updates, otherwise, the damage done by this exploit would have been a lot smaller. Moreover, some older versions of Windows are no longer supported and will not receive this patch.

Uiwix is distributed in the same manner as WannaCry, which is not surprising by any means. However, the Uiwix developers are apparently scanning for vulnerable computers and using a script to infect these machines. It also appears this ransomware is not written to disk, which is a rather shocking turn of events in the world of ransomware. Having malicious software reside in and operate out of the computer’s memory directly is very troublesome, to say the least.

For the time being, not much is known about Uiwix, other than there not being a free decryption option available right now. Victims are forced to make a Bitcoin payment of $200 if they want to have their files decrypted. No one would be surprised if a few dozen new types of ransomware come to market using the same EternalBlue exploit in the coming weeks. Now is the time to strike for cyber criminals, that much is evident.

If you liked this article, follow us on Twitter @themerklenews and make sure to subscribe to our newsletter to receive the latest bitcoin, cryptocurrency, and technology news.


Illuminati, Mason, Anonymous I'll never tell. I can tell you this, global power is shifting and those who have the new intelligence are working to acquire this new force. You matter naught except to yourself, therefore prepare for the least expected and make your place in the new world order.

Disqus Comments Loading...
Published by

Recent Posts

Bitcoin Price Chart Forecast: BTCUSD Awaits Pennant Breakout

Bitcoin Price Forecast: A series of lower highs and slightly higher lows has formed a pennant pattern Regardless of direction,… Read More

4 hours ago

Billionaire Blackstone CEO Heaped Praise On Blockchain—But Made A Bitcoin Warning

Bitcoin has won over many from the traditional finance industry , but far more of the investment old guard remain… Read More

4 hours ago

Early Ethereum advisor charged with extortion and arrested

The accused, Steven Nerayoff, violated the agreement made with a blockchain firm. If found guilty, Nerayoff and his associate Michael… Read More

4 hours ago

CME Group Reveals Plan for Bitcoin Options in Q1 2020

Leading derivatives exchange operator, CME Group announced in a press release today that it will launch options on its bitcoin… Read More

10 hours ago

Analyst: Bakkt Launch to Improve Trustworthiness of Crypto Markets

For the past year many participants within the crypto markets have been looking towards the official launch of Bakkt as… Read More

10 hours ago

IBM Stock Gets a Blockchain Pop

IBM (NYSE: IBM ) investors haven’t had all that much to complain about in 2019. After a precipitous drop over… Read More

10 hours ago

This website uses cookies. We use these cookies to collect data about your interaction with our website for the purpose of continuously improving your experience with our site. For more information we encourage you to read our privacy policy.

Read More