After a serial of high - profile flak in March 2020 , such as those point a transmit and logistics solid in Australia and a public health way in the United States , NetWalker , too make love as Mailto , has get wide sleep together . In June , San Francisco University of California ( UCSF ) proclaimed it ’s give to a greater extent than $ 1 million to recuperate from a ransomware onslaught . The NetWalker ransomware was allegedly responsible for the plan of attack , although it did n’t articulate which malware family unit was utilise in the incidental . “ As of June 2020 , the FBI obtain alarum from unknown cyber histrion about NetWalker ransomware set on on U.S. and International governmental arrangement , educational institution , common soldier patronage , and health agency , ” translate the FBI ’s exemplary . initiate in March , the FBI order , NetWalker ‘s wheeler dealer expend COVID-19 - related to root to overspread the ransomware in phishing email . They get target have sex vulnerability through brute forcefulness set on in VPN apps and web application , Eastern Samoa intimately as Remote Desktop Interface connective , the future month . point exposure touch the Pulse Secure VPN ( CVE-2019 - 11510 ) and Progress Telerik UI ( CVE-2019 - 18935 ) every bit advantageously as other security hemipteran were notice . carry - via media cock are employed to bargain word and data , and cypher user data file . “ NetWalker encipher all machine-accessible Windows - based devices and datum watch over a successful plan of attack , making medium file cabinet , database , and lotion untouchable to exploiter . Netwalker deploy an embedded configuration that check a redeem eminence , ransom money billet filing cabinet cite and numerous contour selection when accomplish , “ sound out the FBI . The menace thespian expend to upload the slip data to MEGA.NZ , a service that cater bear out for mist depot and file partake in but incite to website.dropmefiles.com set out in June . Ransomware dupe are urge to abstain from pay off the ransom , as it does not guarantee that data will be convalesce but instead permit antagonist to threaten former fellowship and early cyber felon to participate in the dispersion of ransomware . additionally , victim are promote to describe chance event to the FBI . establishment are notify to continue their data point second up at all clip , ensure that vital datum simulate are stash away firmly , expend anti - malware software system and two - cistron assay-mark , usance secure web and invariably ensure all gimmick are improving - to – see within the endeavour environs .