This is a comprehensive report on ransomware-related events covering a timeframe read reflected in you online free pdf January 2017 through April 2018. The incidents herein are visually broken down into categories, including new ransomware, updates of existing strains, decryptors released, and other noteworthy news.
Security researchers and users interested in the ransomware subject can now use this all-in-one knowledgebase instead of having to collect data from multiple different sources. SAMAS RANSOMWARE UPDATED The extension being appended is . NEW SAMPLE CALLED FIRSTRANSOMWARE The executable is firstransomware. RED ALERT RANSOMWARE SPOTTED A derivative of the open source Hidden Tear Offline ransomware. N-SPLITTER USING RUSSIAN FILE EXTENSION Another Hidden Tear spinoff.
NEW EDA2 POC SPINOFF EXPOSED Brand-new sample based on EDA2 proof of concept ransomware. Extension and the name are a match. 2 BTC to return hostage databases. ROBOT SERIES THEMED INFECTIONS ON THE RISE A group of crooks calling themselves FSociety have been busy coining multiple screen lockers and crypto ransomware samples.
MERRY X-MAS RANSOMWARE DISCOVERED Uses the . RARE1 file extension and creates YOUR_FILES_ARE_DEAD. TIES BETWEEN PSEUDO-DARKLEECH AND RANSOMWARE The pseudo-Darkleech cybercrime network was found to be responsible for multiple ransomware campaigns in 2016. GLOBE V3 DECRYPTED Emsisoft’s Fabian Wosar cracks Globe ransomware version 3, which uses the . FIRECRYPT THREAT EQUIPPED WITH DDOS FEATURE Appends the . Also crams up HDD with junk files.
NEW LEGISLATION ON RANSOMWARE TAKES EFFECT A law passed in California defines ransomware distribution as a standalone felony rather than part of money laundering schemes. KILLDISK RANSOMWARE ENHANCED Now attacks Linux machines along with ones running Windows. Separate files for encryptor, live chat and TOR. SKYNAME RANSOMWARE IS UNDERWAY In-development Hidden Tear POC spinoff.