[tahanteada]

Avastati CryptoLockeri uus versioon:

Preying on Assumptions: Symmetric Encryption in a CryptoLocker Variant

This trojan was found on a compromised web server that was used to send mass emails with a malicious attachment. Upon execution, the malware searches all logical drives for common media and document files, appends .CRYPTOLOCKER to each file’s name and allegedly encrypts each file with 2048-bit RSA key. It places a text file in every subdirectory with ransom instructions. It persists on the system by copying itself to a TEMP folder, and adding that copy to the system autoruns. It also gives this copy a file-association to the “.CRYPTOLOCKER” file extension. When it finishes this dirty work, it displays a warning (seen above) with instructions for downloading the Tor Browser to (presumably) cough up some money for the private RSA key required to decrypt the files. This is a similar pattern that we have seen in recent ransomware variants.

Kogu jutt edasi lingil:
http://fakebit.com/symmetric-encryption-in-a-cryptolocker-variant/
--------------------------
CryptoLocker Variant Found with Weak Encryption

A modification of the infamous CryptoLocker ransomware Trojan that does not rely on the 2048-bit RSA encryption and does not communicate with a command and control server has been found in the wild.

Edasi lingil:
http://news.softpedia.com/news/CryptoLocker-Variant-Found-with-Weak-Encryption-447830.shtml

[HacaX]

Voimas! Tavapressis tuleb nuud kindlasti ridamisi artikleid sellest kui paha Tor on - pahavara mitte ainult ei kasuta seda, vaid lausa promob kasutamiseks vajalikku softi