|
Ransomware threatens PC users |
|
|
29 May 2006, SMH - Ransomware typically takes the form of a trojan horse virus that holds personal computer files "hostage" and then then demands a ransom for their safe return. These ransomware trojans are most commonly picked up by browsing malicious web pages or clicking on links contained in spam emails.
Ransomware first appeared in May last year with the discovery of Pgpcoder.A, which blackmailed users directly for money after disabling files.
A number of variants followed, and then in March this year a more robust example called Cryzip.A was detected by security company LURHQ. The trojan used malicious code to hijack user files and to encrypt them so they could not be accessed, and then demanded payment in return for the decryption key.
According to Trend Micro, there are now two new ransomware trojans in the wild. Ransom.A takes over certain files within a user's system, with a message popping up on infected systems explaining that the computer is locked. The trojan deletes files every half hour until the author has been paid.
The other, Arhiveus.A, blackmails the user into purchasing products from a number of pharmaceutical Web sites in order to be granted access to a password that will unlock the encrypted files.
PC users are warned not to click on links contained in spam emails or visit suspect websites, in order to reduce the chance of falling victim to ransomware.
For victims of such an attack, Trend Micro advises seeking help from their antivirus vendor as well as alerting local police to ensure their ransomed files have the best chance of recovery.
Original Article: Hostage threat to home PCs
|
You are at 
