A newly identified ransomware family is making headlines for its unconventional marketing strategy—claiming to use encryption that is resistant to attacks from quantum computers. The ransomware, known as Kyber, has been active since at least September 2023 and has drawn attention for its use of ML-KEM (Module Lattice-based Key Encapsulation Mechanism).
ML-KEM is a post-quantum cryptographic standard developed by the National Institute of Standards and Technology (NIST). The name "Kyber" is derived from the alternate name for ML-KEM, which is also referred to as Kyber. For clarity, this article will use "Kyber" to refer to the ransomware, while "ML-KEM" will denote the encryption algorithm.
How Kyber Ransomware Uses ML-KEM for Encryption
ML-KEM is an asymmetric encryption method designed for secure key exchange. It relies on mathematical problems based on lattice structures, which quantum computers cannot solve more efficiently than classical computers. This makes ML-KEM a strong candidate to replace traditional cryptosystems such as Elliptic Curve Cryptography (ECC) and RSA, both of which are vulnerable to attacks from sufficiently powerful quantum computers.
Why Quantum-Resistant Encryption Matters
Quantum computing poses a significant threat to current encryption standards. Unlike classical computers, quantum computers can potentially break widely used encryption methods like RSA and ECC by leveraging algorithms such as Shor’s algorithm. ML-KEM, being based on lattice problems, is designed to withstand such attacks, offering a more secure future for data protection.
Key Takeaways About Kyber Ransomware
- First ransomware family to explicitly claim quantum-resistant encryption using ML-KEM.
- ML-KEM is a NIST-standardized post-quantum cryptographic algorithm.
- The ransomware has been active since at least September 2023.
- Uses lattice-based encryption, which quantum computers cannot easily crack.
- Marketed as a replacement for vulnerable encryption methods like RSA and ECC.
Related articles
Fired IT Workers Accidentally Record Own Database Sabotage via Active Teams Call
Perhaps you remember Muneeb and Sohaib Akhter, the 34-year-old twin brothers we profiled earlier this week. Although they had the tech chops to commit...
Colorado's Age-Gating Bill Sparks Backlash from Linux Developers Over Privacy Concerns
In January, Colorado lawmakers introduced a proposal to make operating systems collect users' ages and pass them to app developers. The bill, SB26-051...
Windows 11 BitLocker Bypassed by Zero-Day Exploit 'YellowKey' in Seconds
A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain compl...
OpenAI Confirms No User Data Accessed in ChatGPT Mac App Security Breach
OpenAI found no evidence that user data was accessed.
Apple Supports Google Against EU’s Android AI Mandate, Citing Privacy Risks
The company agrees with Google that it would put European users' privacy and safety at risk.
Meta Employees Protest AI Training Using Mouse Tracking Data
Last month, it said it would use employees' mouse movements and keystrokes to train AI models.
How Windows Update Now Protects Your PC from Faulty Driver Updates
Hardware driver updates can be a blessing and a curse. When they're good, they can fix bugs, improve performance, and add new capabilities, giving you...
Meta AI Introduces Private Incognito Chat for WhatsApp Users
No one other than you will be able to read messages exchanged via Incognito Chat with Meta AI.