×
GreekEnglish

×
  • Politics
  • Diaspora
  • World
  • Lifestyle
  • Travel
  • Culture
  • Sports
  • Cooking
Thursday
09
Jul 2026
weather symbol
Athens 26°C
  • Home
  • Politics
  • Economy
  • World
  • Diaspora
  • Lifestyle
  • Travel
  • Culture
  • Sports
  • Mediterranean Cooking
  • Weather
Contact follow Protothema:
Powered by Cloudevo
> technology

New Cmb Dharma ransomware variant discovered

How to protect yourself from the Dharma Cmb Ransomware

Newsroom October 12 01:45

Δείτε περισσότερα άρθρα μας στα αποτελέσματα αναζήτησης

Add Protothema.gr on Google

On Thursday a new variant of the Dharma Ransomware was discovered that appends the .cmb extension to encrypted files.

The Cmb variant of the Dharma Ransomware was first discovered by Michael Gillespie when he noticed samples uploaded to ID Ransomware, After tweeting about it, Jakub Kroustek replied with a hash to the sample.

Unfortunately, there is no way to decrypt files infected with the Dharma Cmb Ransomware variant for free. For those who wish to discuss this ransomware or receive support, you can use the dedicated Dharma Ransomware Support & Help topic.

Distributed through hacked Remote Desktop Services

The Dharma Ransomware family, including this Cmb variant, is installed manually by attackers hacking into computers over Remote Desktop Protocol Services (RDP). The attackers will scan the Internet for computers running RDP, usually on TCP port 3389, and then attempt to brute force the password for the computer.

Once they gain access to the computer they will install the ransomware and let it encrypt the computer. If the attackers are able to encrypt other computers on the network, they will attempt to do so as well.

>Related articles

After the Moon and Mars, scientists set their sights on Titan: The ambitious plan for a human mission to Saturn’s largest moon

Greek prime minister and defence minister to inaugurate new cyber defence centre as Athens strengthens its digital shield

Elon Musk & SpaceX: How the “failed idea” and the Russians’ “NO” led to the launch of a $2 trillion company

How the CMB Dharma Ransomware encrypts a computer

When the Cmb ransomware variant is installed, it will scan a computer for files and encrypt them. When encrypting a file it will append an extension in the format of .id-[id].[email].cmb. For example, a file called test.jpg would be encrypted and renamed to test.jpg.id-BCBEF350.[paymentbtc@firemail.cc].cmb.

It should be noted that this ransomware will encrypt mapped network drives, shared virtual machine host drives,  and unmapped network shares. So it is important to make sure your network’s shares are locked down so that only those who actually need access have permission.

Read more HERE

Ask me anything

Explore related questions

#ransomware#science#technology#variant
> More technology

Follow en.protothema.gr on Google News and be the first to know all the news

See all the latest News from Greece and the World, the moment they happen, at en.protothema.gr

> Latest Stories

The AfD remains the leading party in Germany – The Merz government’s reforms fail to win over voters

July 8, 2026

The European Parliament recognized, for the first time, the women & girls of Cyprus as victims of the crimes committed during the 1974 Turkish invasion

July 8, 2026

France Is “Ablaze”: The Heat Wave Is Intensifying, and Wildfires Have Burned 78,000 acres

July 8, 2026

Unbelievable response by Erdogan on the Casus Belli: Almost no Turk knows what it is, Let’s not burden our peoples with these issues – Mitsotakis was wrong to follow Netanyahu on the F-35s

July 8, 2026

Russia bans diesel exports to address fuel shortages caused by Ukrainian strikes

July 8, 2026

Horror in the Air: Student pilot in Argentina lands small plane alone after instructor jumps to his death

July 8, 2026

A classified manual reveals how the CIA created stronger and faster people through the power of the mind

July 8, 2026

SYRIZA MP Katerina Notopoulou resigns from Parliament

July 8, 2026
All News

> Greece

In reverence, the emotional deposition in Jerusalem, see photos & video

The Holy Temple of the Resurrection opened after many days due to the war between Israel and Iran

April 10, 2026

In the final stretch for the accreditation of joint master’s degrees: Aiming for their launch in the coming academic year

April 10, 2026

Schedule for Epitaph Procession today (10/4)

April 10, 2026

Perfect weather for Easter excursions, according to Tsatrafyllia’s forecast

April 10, 2026

Easter in Greece: The customs that continue in Greek tradition – From Nafpaktos to Corfu

April 10, 2026
Homepage
PERSONAL DATA PROTECTION POLICY COOKIES POLICY TERM OF USE
Powered by Cloudevo
Copyright © 2026 Πρώτο Θέμα