Kaspersky Labs Detects Ransomware Assaults
Investigators at Kaspersky Labs the security company reportedly unearthed one extremely harmful ransomware variant that has been hitting PCs worldwide lately.
Elaborates the security company that one kind of malicious software, 'ransomware' holds PCs alternatively their data hostage opposed to their users after which it demands money for giving them back. The money demanded usually is asked to be wired to the attacker alternatively the ransom advises users for purchasing bogus removal software.
In the current attack, Kaspersky identifies the ransomware as Trojan-Ransom.Win32.GpCode.ax and says it's quite like the notorious GpCode Trojan horse that the company detected during 2004 and once more during 2008.
Nevertheless, while researchers at Kaspersky Labs stated that they managed in decrypting and restoring data, which GpCode targeted during 2008, the latest variant of the GpCode ransomware represented one fresh variety that was considerably severe. Securitynewsdaily.com published this on November 29, 2010.
Additionally, the security company said that different from the earlier versions of the ransomware in question, the latest one didn't erase data following encryption. Rather the code replaced data with something else that prevented the use of PhotoRec a software program that was designed for data recovery. PhotoRec was suggested in the previous ransomware assault, Kaspersky noted.
Meanwhile, as a word of caution, the Kaspersky researchers have urged users to close their PCs immediately if the ransom warning shows up. As the malware continues to execute its malicious task behind the screen, by shutting down their PCs, and even pulling off the main plugs, users may have some of their folders saved, they further suggested. PCWorld.com published this on November 30, 2010.
Additionally the researchers recommend that users should have a data backup. For by maintaining data backups, users after removing the Trojan from their hijacked machines can restore data, which is unencrypted, by resorting to these backups.
Eventually according to the specialists, malware items like ransomware are highly prevalent as also cyber-criminals are using them more and more. For example, while Kaspersky Labs spotted approximately 3,000 fake anti-virus applications between January and June 2008, it detected over 20,000 samples during the same period in 2009.
» SPAMfighter News - 10-12-2010