Attacks with ShrinkLocker, which leverages Microsoft BitLocker for accelerated drive encryption and a random password for re-encryption in Windows 7 and 8 or Windows Server 2008 and 2012 systems, have been deployed against organizations in Mexico, Jordan, and Indonesia, with the payload gaining traction among less sophisticated threat operations due to its simplicity, noted Bitdefender, which previously released decryptors for the MegaCortex, LockerGoga, and MortalKombat ransomware strains. “Our analysis shows that ShrinkLocker malware is being adapted by multiple individual threat actors for simpler attacks, rather than being distributed through a ransomware-as-a-service (RaaS) model,”

Source: SC Magazine