Vietnamese newspaper Thanh Niên reports (archive) that several computers located at Vietnam's Ministry of Justice recently became infected with ransomware leading to the encryption of important data. Following the ransomware attack, other agencies under the helm of the MoJ were advised to guard against such infections in a stock standard manner as is typically suggested by government – don't visit unfamiliar websites and take extra caution opening email attachments. Continue reading
Category Archives: Ransomware
The Chicken Brothers Cook Up Some Ransomware
Bloatware publisher Symantec reports (archive) that a variant of Cryptolocker is infecting numerous computers throughout Australia, demanding a ransom of up to AUD $1,000 or USD $790 payable to none other than Los Pollos Hermanos.
The Breaking Bad branded variant, which encrypts common file extensions such as *.gif, *.doc, *.mp3, *.pdf, *.txt. *.zip, *.xls and so on directs victims to email theonewhoknocks@mailinator.com for support related enquiries, but at this time that inbox is empty. Continue reading
Warrick County Prosecutor's Office Cover Up Ransomware Infection
Prosecutor for Warrick County Michael J. Perry last week released a public statement claiming that shortly after taking office, he became aware of the fact that the ransomware known as cryptolocker had infected computers belonging to the Prosecutor's Office but that the security breach had been covered up by a Ms JoAnn Krantz, the elected Prosecutor at the time of the infection. Ms Krantz is also alleged to have directed employees of the Warrick County Prosecutor's Office not to discuss the ransom demands paid in bitcoin with anyone, telling her staff by email that: Continue reading
Ransomware Inception
CBC News reports (archive) that a Quebec family which paid a bitcoin ransom not once but twice still failed to recover their treasured family photos despite paying 5 BTC.
Upon reading the Cryptowall notification that their files had been encrypted and that a ransom was required to be paid if they wished to reclaim them, the couple took their PC to a local repair store which confirmed the legitimacy of the threat. Continue reading
Tewksbury Police Pay Ransom
Local weekly newspaper the Town Crier reports that Tewksbury, Massachusetts police have paid a $500 ransom after a version of the CryptoLocker ransomware encrypted essential files and rendered their network unusable. The initial infection was determined to have happened on December 7th when it entered the police department's network through the computer of the Officer in Charge. The malware's presence was not discovered until the next day. Continue reading
Four New Jersey Schools Infected By Ransomware
NJ.com reports that four schools within the Swedesboro-Woolwich district were forced to suspend PARCC examinations last week after ransomware infected numerous computers at each school. Mistaking the shotgun approach as taken by ransomware authors for that of a targeted attack on the school by hackers, tech support for the district schools opted to work throughout the weekend so as to restore services and avoid paying a $500 ransom made payable in bitcoin. Continue reading
Latest Ransomware Targets Game Files & Related Applications
Bromium Labs reports that a new variant of CryptoLocker has been spotted and that it is designed so as to specifically target gamers rather than taking the broad approach previously seen in earlier versions of 'the popular to edit so as to make your own' ransomware.
The latest variant reportedly targets 185 file extensions including ones associated with popular online games such as World of Warcraft, League of Legends, Starcraft 2 and Day Z. Additionally, the ransomware seeks out file extensions associated with programs such as Unity 3D in what is likely to be an assumption by the malware creator that these files are valued much more so by its owner than that of saved game files. Continue reading
US Offers Reward For Capture Of Retailer Of Cryptolocker Related Botnet
The U.S. State Department has announced a reward of up to USD $3 million1 for information leading to the arrest and/or conviction of Russian national Evgeniy Mikhailovich Bogachev. Bogachev is wanted by the FBI for numerous alleged cybercrimes including an association with a botnet named Gameover ZeuS. Continue reading
Payable in bezzlars, not bitcoin. ↩
Half Million Dollar Ransom Made In Bitcoin
For one Canadian expatriate the term "Ransomware" has taken a more literal turn. According to The Tico Times Ryan Piercy was allegedly kidnapped and held for roughly a month by attackers who demanded a half million dollar ransom to be paid in Bitcoin. Piercy arrived home Saturday via taxi, so if Piercy was indeed held for ransom it seems incredibly likely the ransom was paid and the scheme worked as advertised.
Midlothian, IL Police Department Pays Bitcoin Ransom
The Chicago Tribune reports that the Midlothian Police Department paid a ransom last month in order to regain access to police files and backups encrypted by the ransomware known as Cryptoware. The Village of Midlothian obtained the bitcoins by way of sending a money order to a New York Bitcoin cafe1 after attempts to wire the money via Bank of America failed. Continue reading
Possibly coincafe.com but not confirmed. ↩