• Skip to main content
  • Skip to primary sidebar
  • Skip to footer
SwaCash | Internet Marketing News

SwaCash | Internet Marketing News

Latest Updates on Tech, Internet & Digital World

  • Home
  • Digital Marketing
  • Social Media
  • Technology
  • About
  • Contact Us
You are here: Home / Blogging / Switching your keyboard to Russian is a bad idea against cyberattacks

Switching your keyboard to Russian is a bad idea against cyberattacks

May 22, 2021 by Amer Bekic

It is well known that Russian cybercriminals are sparing businesses in their country in order to benefit from the laissez-faire of the local authorities. This is why some experts suggest that switching your keyboard to Russian would be enough to pass your computer as a Russian device, and therefore be spared by malware.

“Try this weird trick Russian hackers hate.” On May 17, well-known – and sometimes maligned – journalist Brian Krebs posted a bizarre blog post. His idea? Change its keyboard settings on Windows to ‘disguise’ it as a Russian keyboard. The goal? Get detected as a Russian system by malware, often coded in such a way as to spare Russian victims. If the malware detects it is on Russian system, it will not complete its installation, or even uninstall itself. Brian Krebs speculates that disguising the keyboard would abuse this system, and thus provide useful, if imperfect, protection against cyber threats.

Concretely the journalist proposes to deploy the subterfuge in two ways:

  • Download (for free) the Windows virtual keyboards in one language of the countries free from Russian malware. Problem: the user risks unintentionally switching their keyboard to Russian (or other) by false manipulations. It’s easy to tip the other way, but it’s a friction that can become painful with use.
  • Download a simple script, which applies the Russian registry without actually installing the virtual keyboard. It only applies a surface layer, making no operational change.

Barely published, the article drew powerful reactions. Fabian Wossar, technical director of Emsisoft, the company most mobilized in the response to ransomware attacks, has cracked a long criticism: “Within the ransomware research team, we often joke about what news ‘innovative’ way is going to be presented to us as the next big solution against ransomware. One of the recurring runnings-gags of the last 8 years has recently been transformed into a real recommendation: to change the layout of your keyboard to Russian.“

The researcher explains that a simple superficial change will not satisfy automatic malware detections. “Unless you really want to use your computer in Russian with a Russian keyboard, you will still get attacked,” he says. Importantly, he cautions that this kind of pro-Russian auto-check can be turned off with a single command. As a result, it is enough for the criminals to realize that the name of the company – scattered all over the computer – is not Russian to release their malware on the system, even if the user tries to write in Russian.

In the worst-case scenario, that of a ransomware attack, the keyboard subterfuge would be derisory. Once the malware has entered the system, it is already too late, because there is no reason to stop at a simple keyboard setting. “The hackers behind the ransomware will know everything about your business. They will know quickly and definitively if you are a real Russian company,” concludes Wossar.

Beyond the Keyboard, the Real Russian Question:

Despite this failure, Brian Krebs’ reasoning was based on a truthful observation. Cybercriminal gangs thrive in Russia thanks to the historic laissez-faire of local power. In return, they undertake – implicitly not to victimize the Russian sphere of influence. Concretely, this commitment translates into a list of countries not to attack, translated into technical terms in the code of their malware. We are talking here about the countries of the Commonwealth of Independent States, which brings together 9 of the 15 former Soviet republics (Russia, Azerbaijan, Uzbekistan, Belarus, etc.), of countries which left it at different times (Ukraine, Georgia, Tajikistan) or even from Syria.

As long as a company or a resident of these countries is not affected, the local authorities will never launch an investigation. In return, the Russians almost systematically turn a deaf ear to requests for collaboration from European or American law enforcement agencies.

But the Colonial Pipeline affair, from which Krebs’ reflection started, has for once called into question this mode of operation. And for good reason: the attack on the pipeline operator by the Darkside ransomware gang has led to a new diplomatic streak in already strained relations between the United States and Russia. While US President Joe Biden said there was no sign of Russian power involvement in the attack, he insisted the hackers were operating from Russian territory. Once again, he called on local authorities to intervene to stop the gang’s activity. In the aftermath of his statements, the online traces of Darkside’s IT infrastructure had disappeared: the host of their site reacted – for once – to a request from the authorities.

Because of the victim’s activity, the cyberattack mobilized the highest diplomatic officials, which put Russia in difficulty in its usual letting-go posture. The case had such an impact that major Russian hacker forums banned ransomware topics from their sites, while grumbling about the geopolitical threat attracted by the Darkside attack. They feared a closure orchestrated by the Russian authorities, who usually ignore them, and preferred to show a white paw.

One More Precaution, Although Unnecessary?

Despite criticism of his Russian keyboard subterfuge, Brian Krebs defends his position: “Is there really a downside to taking this simple, free, prophylactic approach? (…) The worst that can happen is that the user accidentally switches their menu options to Russian”. The journalist knows that this precaution will be unnecessary in the vast majority of cases. But for him, the rare incidents where the disguise will work are enough to justify his deployment. Fabian Wossar prefers to recall that we must first highlight the protections with showed effects, such as double authentication .

In short, if it is potentially useful against very basic malware, the keyboard trick is far from the hoped-for “vaccine” against the main Russian malware. But some laugh at the idea with sarcasm: what if to escape Russian cyberthreats, all you had to do was move your business to Russia?

Filed Under: Blogging

Primary Sidebar

E-mail Newsletter

More Articles

Apple’s valuation exceeds $2.5 trillion mark

July 19, 2021 By Amer Bekic

Ethereum (ETH), a white hat saves a cryptocurrency user on the verge of losing $240,000

July 19, 2021 By Amer Bekic

Project Pegasus: Israeli “clickless” spyware used against thousands of journalists and activists

July 19, 2021 By Amer Bekic

Some weird Intel Core 12900K, 12700K, and 12600K specs have appeared online

July 18, 2021 By Amer Bekic

In 2021, the video game industry still generates more investments

July 18, 2021 By Amer Bekic

Malaysian authorities destroy 1,069 mining devices (video)

July 18, 2021 By Amer Bekic

Disable the Windows print spooler or you could be hacked, according to Microsoft

July 18, 2021 By Amer Bekic

Paraguay promises to be a 100% renewable Bitcoin (BTC) mining giant

July 17, 2021 By Amer Bekic

Faced with ransomware, Interpol wants international collaboration

July 17, 2021 By Amer Bekic

AMD brings its FidelityFX Super Resolution to open source

July 17, 2021 By Amer Bekic

Failed to reserve the Valve Steam Deck? You are not the only ones

July 17, 2021 By Amer Bekic

Twitter boss prepares DeFi application platform on Bitcoin blockchain

July 16, 2021 By Amer Bekic

Here’s why the Galaxy Watch 4 could make the Apple Watch shake

July 16, 2021 By Amer Bekic

“Facebook users spied on social by dozens of employees”: the accusation in the book-survey

July 16, 2021 By Amer Bekic

Valve’s Steam Deck will be able to run Windows

July 16, 2021 By Amer Bekic

Only 12% of companies realize the full potential of the cloud

July 16, 2021 By Amer Bekic

Limited Edition RTX 3080 Gundam Cards Sold In Pre-Built Mining Rigs

July 16, 2021 By Amer Bekic

Windows on iPad: You dreamed it, Microsoft did it

July 15, 2021 By Amer Bekic

iPhone 13: anticipating record sales, Apple would have increased production by 20%

July 15, 2021 By Amer Bekic

Google Stadia is not dead and seeks to expand its catalog of games with an enticing affiliate program

July 15, 2021 By Amer Bekic

Galaxy Watch 4: released on August 27, 2021, Amazon confirms!

July 15, 2021 By Amer Bekic

Apple seriously threatens to exit UK market

July 15, 2021 By Amer Bekic

Razer upgrades Blade 15 and Blade 17 to 11th gen Intel processors

July 14, 2021 By Amer Bekic

British detectives seize record $250 million in crypto

July 14, 2021 By Amer Bekic

OnePlus Nord 2: new renderings, Android updates, 50 MP sensor, lots of info

July 14, 2021 By Amer Bekic

Nigerian Bitcoin Trading Volume At Highest Despite Central Bank Restrictions!

July 14, 2021 By Amer Bekic

Google to challenge EU antitrust fine of 4.3 billion euros

July 14, 2021 By Amer Bekic

This hidden feature on iPhone is a spy tool

July 13, 2021 By Amer Bekic

NVIDIA: GeForce RTX 30xx SUPER coming to laptop?

July 13, 2021 By Amer Bekic

Microsoft buys cybersecurity start-up RiskIQ

July 13, 2021 By Amer Bekic

Android 12: you can play games before you even finish downloading

July 13, 2021 By Amer Bekic

Cyber ​​defense center opens in New York

July 13, 2021 By Amer Bekic

After Google, Apple could be the next target of US antitrust crackdown

July 12, 2021 By Amer Bekic

At 16, this teenager became a millionaire by selling PS5s at a premium

July 12, 2021 By Amer Bekic

A derivative of the PS5 architecture will be found in more than 80 system designs

July 12, 2021 By Amer Bekic

Galaxy Unpacked: all the new Samsung products may have just leaked

July 12, 2021 By Amer Bekic

124-year-old hydropower plant uses its energy to mine Bitcoin

July 11, 2021 By Amer Bekic

Ukrainian law enforcement has shut down 3,800 PS4 crypto-farm

July 11, 2021 By Amer Bekic

Mac’s battery life with M1 is so good Apple thought there was a bug

July 11, 2021 By Amer Bekic

Kaseya: the ransomware behind the attack was programmed to avoid Russian-speaking systems

July 10, 2021 By Amer Bekic

AI could also be used to create scientific disinformation

July 10, 2021 By Amer Bekic

Windows 11: the search bar back in the last preview

July 10, 2021 By Amer Bekic

Gettr: this new social network was launched by someone close to Donald Trump

July 10, 2021 By Amer Bekic

Windows 11: only recent versions of Windows 10 will be updated directly

July 9, 2021 By Amer Bekic

Study blacks out YouTube algorithm

July 9, 2021 By Amer Bekic

China continues crackdown on cryptocurrencies

July 9, 2021 By Amer Bekic

OnePlus recognizes limiting the performance of applications for greater autonomy

July 9, 2021 By Amer Bekic

Study: Apple Watch and Fitbit Could Detect Long-Term Effects of COVID-19

July 8, 2021 By Amer Bekic

Microsoft is deploying an urgent patch to correct the PrintNightmare flaw

July 8, 2021 By Amer Bekic

China claims to have the world’s most powerful quantum computer

July 8, 2021 By Amer Bekic

Three Tweets related to EtherRock sales

Not one not two, Three digital pet rock cliparts sell for $600K each

August 22, 2021 By Amer Bekic

PolyNetwork Hacking Incedence

Hacker who stole $800 Million, now offered a white hat job by its victim firm

August 20, 2021 By Amer Bekic

credit card back panel containing the magnetic stripe

MasterCard announces future without magnetic stripe on the back.

August 17, 2021 By Amer Bekic

Fortune magazine sells its cover art as NFT. Raises 1.3 Million dollars

August 14, 2021 By Amer Bekic

Bored Ape Yacht Club Token 3749

This bored ape pic just sold for 1.29 Million dollars!

August 14, 2021 By Amer Bekic

Footer

Search this site

Recent Articles

  • Not one not two, Three digital pet rock cliparts sell for $600K each
  • Hacker who stole $800 Million, now offered a white hat job by its victim firm
  • MasterCard announces future without magnetic stripe on the back.
  • Fortune magazine sells its cover art as NFT. Raises 1.3 Million dollars
  • This bored ape pic just sold for 1.29 Million dollars!

Browse Topics

  • Blogging (164)
  • Content Marketing (7)
  • Cryptocurrency (5)
  • Digital Marketin (4)
  • Digital Marketing (333)
  • E-commerce (122)
  • Google (195)
  • Google Ads (24)
  • Marketing (166)
  • News (344)
  • Seo (74)
  • Social Media (43)
  • Technology (27)
  • Uncategorized (82)
  • WordPress (22)

Tags

Amazon Android Apple Apple Watch Artificial Intelligence B2B Bitcoin Blogging China Content Content Marketing Coronavirus Cryptocurrency Cybercriminals cybersecurity Digital Digital Marketing Facebook Gaming Google Increase Sales Instagram Intel internet strategy iOS 15 iPhone iPhone 12 IPhone 13 Make Money Marketing Microsoft Nvidia Online Marketing Samsung Science Search engine optimization Seo SEO optimization by content Social Media Social networks Technology TikTok Twitter Windows 11 YouTube

© 2019–2022 · SwaCash.com