Articles about ransomware

phishing survey shines light on cybersecurity threats to businesses

Phishing and ransomware remain the most pressing security threats for UK business, according to a government-backed survey out Wednesday. The survey, commissioned by the Department for Culture, Media and Sport, found that the most common types of breaches are related to staff receiving fraudulent emails (in 72 per cent of …
John Leyden, 19 Apr 2017

Profit with just one infection! Crook sells ransomware for $175

Cybercrooks have begun retailing a new easy-to-use ransomware strain that promises profit with only one successful infection. Karmen is being sold on Dark Web forums from Russian-speaking cyber-criminal DevBitox for $175. The new ransomware-as-a-service variant offers a graphical dashboard, allowing purchasers to keep a …
John Leyden, 18 Apr 2017
Woman stares at laptop screen, shocked. Pic by shutterstock

Cerber surpasses Locky to become dominant ransomware menace

Cerber eclipsed Locky as the most common ransomware pathogen doing the rounds in the first three months of 2017. Cerber's control of the cybercrime market rose from 70 per cent market share in January to 87 per cent in March, according to the latest cybercrime tactics report by Malwarebytes Lab. The success of Cerber is down …
John Leyden, 13 Apr 2017

F-Secure gobbles up Zdziarski's Little Flocker, spits it into antivirus kit

Updated F-Secure has completely absorbed Little Flocker, the macOS security tool built by computer forensics boffin Jonathan Zdziarski. Financial terms of the deal, announced Thursday, were undisclosed. Zdziarski just recently joined Apple on its security engineering team, so the handover of the paid-for software to F-Secure makes a …
John Leyden, 6 Apr 2017
Ransomware, photo via Shutterstock

Point-and-pwn tool for posers dumbs down ransomware spreading

Spreading ransomware has become a point-and-click exercise following the release of a file-scrambling malware interface for unskilled wannabe cybercrooks. The malware generator enables attackers to customise the wares using a user-friendly interface. Strains of the resulting WYSIWYE (What You See Is What You Encrypt) nasties …
John Leyden, 31 Mar 2017
Image by 9 George

World's worst botnet fiends switch from ransomware to stock scam spam

Cybercriminals behind the Necurs botnet have reactivated the zombie network and returned to their original business of using compromised machines as conduits for spam distribution. In January, Cisco Talos reported that the Necurs botnet had gone offline, taking the typical volume of Locky ransomware-tainted spam emails with it …
John Leyden, 21 Mar 2017
Star Trek Motion Picture Spock

Shameless crooks fling Star Trek-themed ransomware at world

Audacious cybercriminals have created an Star Trek-themed strain of ransomware. Hat-tip to Bleeping Computer, which broke the story on the "Kirk" malware, discovered yesterday by Avast malware researcher Jakub Kroustek. The software disguises itself as the notorious Low Orbit Ion Cannon (LOIC) denial of service tool, a …
John Leyden, 17 Mar 2017
A Ransom Note

Petya ransomware returns, wrapped in extra VX nastiness

Researchers have spotted a variant of last year's Petya ransomware, now with updated crypto and ransomware models. Kaspersky's Anton Ivanov and Fedor Sinitsyn say the attack, which they've dubbed “PetrWrap”, uses the PsExec tool to install ransomware on any endpoint it can access. Rather than use the original Petya, which was …
Image by gyn9037

Brit infosec's greatest threat? Thug malware holding nation's devices to ransom – report

The National Crime Agency and newly formed National Cyber Security Centre joint report on cybercrime unsurprisingly names ransomware as the top internet menace. The report notes that ransomware is a “significant and growing” risk, with file-encrypting malware poses a threat to a greater range of kit beyond PCs. Smartphones, …
John Leyden, 14 Mar 2017
Ruby slippers from wizard of Oz

Next Generation Security: No, Dorothy, there is no magic wand

Sysadmin blog Hardly a day passes without some kind of major security breach. The type of attack that was once considered staggering in scale has now become the norm. When a Yahoo! breach was found to have lost a billion accounts, it seemed the only thing anyone found unusual about it was that Yahoo! had a billion accounts to lose. Don’t …
Trevor Pott, 8 Mar 2017
Robot looks into magnifying glass, human eye displayed. Photo by Shutterstock

Meet LogicLocker: Boffin-built SCADA ransomware

Let's start with the “calm down” part of the article: yes, LogicLocker is ransomware designed for programmable logic controllers, but no, the cyber-geddon isn't upon us. LogicLocker is a proof-of-concept written by David Formby, Srikar Durbha and Raheem Beyah of Georgia Tech (Formby and Beyah also disclose an affiliation with …
Image by Arak Rattanawijittakorn

Phishing: Another thing we can blame on Brexit

Ransomware attacks are increasingly focusing on organisations that are more likely to pay up, such as healthcare, government, critical infrastructure, education, and small businesses. Phishing volume grew by an average of more than 33 per cent across the five most-targeted industries, according to a study by PhishLabs out …
John Leyden, 7 Feb 2017
Africa Studio

Cerber tops Windows 10 ransomware charts

Net scum behind the Cerber ransomware have been pounding enterprises infecting more corporate machines than any other, according to Microsoft. Some 2114 infections have been discovered from December to January on corporate endpoints operating Windows 10 Enterprise, an operating system that Microsoft boffins says breaks the …
Darren Pauli, 1 Feb 2017
A Ransom Note

We see you, ransomware flingers, testing out your baddest stuff on... Germany?

A security firm has floated the theory that malware authors are using German firms as a testing ground for their wares prior to wider distribution. Four in five (81 per cent) of ransomware detected in corporate environments occurred in North America. Germany is the second-most impacted country by ransomware, leading …
John Leyden, 31 Jan 2017
Hotel staff

Ransomware avalanche at Alpine hotel puts room keycards on ice

A top Austrian hotel coughed up thousands in ransom to cybercrooks, who hacked its computer system and locked guests out of their rooms until the money was paid. The Romantik Seehotel Jaegerwirt went public with its problems as a warning to other hotels. This is the second time the four-star destination has been hit. The …
John Leyden, 30 Jan 2017
Image by gyn9037

Ransomware killed 70% of Washington DC CCTV ahead of inauguration

Criminals infected 70 percent of storage devices tied to closed-circuit TVs in Washington DC eight days before the inauguration of President Donald Trump. The ransomware infection downed 123 of its 187 network video recorders, each controlling up to four CCTVs, and forced the city to wipe its affected IT systems which it says …
Team Register, 30 Jan 2017
Sheriff Woody

Texas cops lose evidence going back eight years in ransomware attack

Updated Cockrell Hill, Texas has a population of just over 4,000 souls and a police force that managed to lose eight years of evidence when a departmental server was compromised by ransomware. In a public statement, the department said the malware had been introduced to the department's systems through email. Specifically, it arrived …
A Ransom Note

More mobe malware creeps into Google Play – this time, ransomware

Researchers say a piece of ransomware disguised as a battery app made its way into the Play store. Check Point says one of its customers contracted the malware app, dubbed "Charger," after installing what they thought was a battery monitoring tool called EnergyRescue. Researchers with Check Point Mobile Threat Prevention say …
Shaun Nichols, 26 Jan 2017

Create a news alert about ransomware, or find more stories about ransomware.

Biting the hand that feeds IT © 1998–2017