Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
    Digg this story   Add to  
New viruses demand ransoms
Published: 2006-04-28

The latest trend in malicious viruses is to infect a machine, encrypt a user's data, and then demand a ransom should the user want his data back.

The approach itself is not new, with a report by Kaspersky Lab on malware evolution at suggesting the first case of virus blackmail dates back to 1989. Trojans such as GpCode and Krotten have existed for some time, and the latter example has already seen more than two dozen variants with constantly changing encryption alogrithms. Users have been blackmailed for various amounts, often ranging anywhere from $10 to more than $2,000. Anti-Virus firm Sophos has written that a new virus reportedly threatens to delete one file every 30 minutes until a $10.99 ransom demand is paid.

What appears to be new in 2006 is the increasingly sophisticated encryption methods used by these viruses. GpCode is reportedly now using the strong and well-respected RSA encryption algorithm - albeit at only 56-bits in its latest variant.

SecurityFocus will be publishing an Infocus technical article on "malicious cryptography" early next week to take a closer look at this approach.

Posted by: Kelly Martin
    Digg this story   Add to  
Comments Mode:
New viruses demand ransoms 2006-04-28
Juha-Matti Laurio
New viruses demand ransoms 2006-04-29
Matthew Murphy (3 replies)
Re: New viruses demand ransoms 2006-05-02
Re: New viruses demand ransoms 2006-05-09
Re: New viruses demand ransoms 2006-05-10
New viruses demand ransoms 2006-05-02
cenk kaan örnek
New viruses demand ransoms 2006-05-02


Privacy Statement
Copyright 2009, SecurityFocus