Europeans targeted with new ransomware
Posted on 19.03.2012
In the last couple of years, malware that hijacks the users' machines and demands money to "unblock" it has become an often encountered threat.

Messages presented by this "ransomware" usually contain warnings that seem to come directly from law enforcement agencies and accuse the user of having downloaded pirated music tracks or movies.

The entity behind the warning and the language used in the message are usually well matched, but as Microsoft researchers have shown, that is not always the case.

In a very recent example, the ransomware authors made quite an effort with HTML style sheets and content in order to trick the users into believing that GEMA (a German music copyright organization) is the author of the warning, but they unexpectedly used the English language for it:


The malware detects the users' IP address and host name, and tries to threaten them into paying a 100 Euros via Paysafecard, a popular European pre-paid electronic payment method. The message also helpfully notes where such a card can be bought.

Once the payment is effected and the password entered, the computer should ideally be "unlocked", but that outcome is by no means certain.






Spotlight

Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics

Posted on 23 October 2014.  |  Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Oct 24th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //