Maze Ransomware Targeting IT Sector Worldwide

A new ransomware called ‘Maze’ targeting IT services worldwide.

Threat Level: HIGH

‘Maze’ ransomware, previously identified as “Chacha ransomware” first appeared in May 2019. The sole purpose of the ransomware is to encrypt the files and then demand a ransom to recover the files. Unlike other ransomware ‘Maze’ will release collected data on the public domain if the ransom is not paid. 

Figure: Map of Maze Infection

‘Maze’ is mainly exploiting remote desktop connections with weak passwords or through email impersonations.  Normally these emails are attached with a macro enabled word document and the macro is utilized to run the malware.

List of file extensions that the malware ignores are:  .LNK, .EXE, .SYS, .DLL and after encrypting all the files, the victims’ desktop will change as shown below;

Screenshot of Maze ransomware infected Windows PC

Reference: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/ransomware-maze/


  • Loss of important files and documents of your company’s data
  • May result in a complete shutdown of your company’s operations
  • Financial loss
  • Damaged to your company’s reputation

Solution/ Workarounds

  • Implement proper backup policies and adhere to them strictly
  • Never pay the ransom
  • Have offline backups of important files
  • Update and install latest security patches on installed 3 party software
  • Keep your virus guard and operating system up to date



The information provided herein is on "as is" basis, without warranty of any kind.

Source: Sri Lanka CERT

Rate this item
(0 votes)

Leave a comment

Please do not enter any marketing or illegal statements | කරුණාකර අලෙවිකරණ හෝ නීති විරෝධී ප්‍රකාශන ඇතුළත් නොකරන්න.

Subscribe to Weekly Email Newsletter

Joomla Extensions powered by Joobi

Articles Archive

Articles Calendar

« June 2020 »
Mon Tue Wed Thu Fri Sat Sun
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30          
This Week
Last Week
This Month
Last Month
All days
Your IP:
2020-06-02 22:03

Video Of The Day

Go to top