iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Ransom-Ware Is Back, Channeled Through Scareware
Search:
[ insider_reports_insider ]

Ransom-Ware Is Back, Channeled Through Scareware



SecurityProNews
Staff Writer
2009-03-26

SecurityProNews: Insider Reports Insider Reports RSS Feed


Hackers seizing data and holding it for ransom isn't a new idea. Back in 2005, we reported a ransom-ware attack on a company that led promptly to the hacker's arrest. Ransom-ware is back, automated, and targets individuals as much as companies.

Ransom-Ware Is Back, Channeled Through Scareware
Ransom-Ware Is Back, Channeled Through Scareware

Trend Micro detected a Trojan called TROJ_FAKEALE.BG that spreads via scareware, fake anti-virus scams designed to fool people into thinking their computer is infected so they'll pay to download a program to get rid of it.

That's bad enough, but in this latest innovation on the scareware theme, "AntiVirus2009," as it is most commonly called, informs the victim of corrupted document files, all of which can be uncorrupted for another $50 via a download of "File Fix Professional."

Unlike the fake scan of the victim's computer in the initial scam where fictional viruses are found to better sell the antivirus download, this virus actually locates documents and encrypts them. They'll not be unlocked until the user ponies up.

Just to highlight what jerks the guys that designed this are, after payment unlocks the document files, the Trojan just finds them again and re-encrypts, starting the process all over again.

Luckily there are good guys on the scene. Over at the BleepingComputer forum, instructions and a removal tool for FileFix have been posted. While it only removes and does not decrypt, another tool and instruction set was posted to recover the documents.

Back in 2005, ransom-ware was relatively easy to trace and the amounts sought were generally much bigger. Hackers are more decentralized now and this process, obviously, is more automated. The attacks are also targeted toward less computer savvy victims who unwittingly drop $50 or $100. Enough victims like these and they make up for bigger, one time heists.


About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - $line) { echo $line ; } ?> All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds