Rontokbro Virus Has a High Risk of Widespread Infection in Vietnam

According to information from the BKIS Cybersecurity Center, the virus currently spreading the most in Vietnam, particularly among agencies and units with internal networks, accounts for up to 52% of the total 14,867 virus samples collected through BKIS’s virus monitoring system.

In June, Vietnam reported 27 new viruses, including the emergence of the first two rootkit-installing viruses in the country. Mr. Nguyễn Tử Quảng, Director of the BKIS Cybersecurity Center, stated: “The appearance of the BeagleFG and BeagleFH worms, which have rootkit installation mechanisms, may signal the beginning of a new trend in virus development: a combination of the rapid spread capabilities of worms with the strong information concealment technology of rootkits.”

These Beagle worms, once they infect a computer, will automatically install a rootkit to hide their presence. Users are almost unable to detect their existence on the machine through standard Windows programs like Task Manager, Regedit, or Msconfig….

According to BKIS statistics, the Rontokbro virus family accounts for 52% of the total 14,867 virus samples collected. Virus experts believe that the primary reason for the current strong spread of Rontokbro worms is the rampant sharing of directories and drives (full sharing) without control in most internal network systems.

If your agency’s computer system is infected with the Rontokbro virus, you can handle it by:

1. Quickly disconnect the infected machines from the internal network.

3. Reconnect the virus-free computers back to the network.

To effectively prevent worms like Rontokbro, network administrators need to review their entire system, disable all unnecessary shared folders and drives, install antivirus software, and update the latest versions for all machines on the network. Additionally, they should seek more information on how to eliminate and prevent new types of viruses.