Reveton Ransomware Now More Advanced, Says Avast
According to Avast the security company, Reveton, known to be a notorious ransomware utilizing a 'police' tactic, is now in an upgraded version with an additional password stealing feature which causes even more damage compared to what standard ransomware would impose.
Avast's researchers stated that the most recent edition of Reveton attacked entities in fresh black market as its developers made it more sophisticated from just a lock-screen malware onto one treacherously-powerful stealer of user credentials and passwords via the addition of the latest Pony Stealer edition. With that, over 110 applications became affected while the user's PC got converted into a botnet device.
The upgraded malware contained seventeen key codes for theft that, amongst others, aimed at OS credentials, e-mail clients, Web-browsers, FTP clients, Internet-based poker clients, instant messaging systems, along with over 140 sub-modules.
At present, the Reveton malware further seizes passwords from the BlackCoin, BitCoin, DodgeCoin, DarkCoin, VertCoin and LiteCoin crypto-currency wallets. This crypto-currency module of the malware is capable of sealing QT wallets as well as mimicking the log-in page following execute of an immediate one.
Moreover, there's a firepower included inside Reveton that's yet one more password-stealer different from Pony, however, strongly impairs anti-virus solutions of the infected computer.
To remove Reveton's infection, some other operating system requires being booted to check the startup options for detecting dubious LNK files, suggests Avast. These files are supposed to show how the binary can be reached via examination of the properties box that displays the CPP components to which the LNK files are assigned.
The security company conjectures that Reveton may've been upgraded because profits were declining from simply shutting access to PCs for ransom extractions. So, the malware developers decided for venturing inside one fresh black business zone, Avast blogged. Computerworld.com published this, August 20, 2014.
Meanwhile, sometime in Feb 2013, a man of Russian origin got detained inside Dubai when Spanish police requested so citing he reportedly masterminded Reveton campaigns, churning some USD1.3m in profits. Ten more individuals too got detained being accused of laundering the money while transmitting the same to Russia, said Trend Micro.
» SPAMfighter News - 8/28/2014