Tuesday , January 26 2021

They detect a "blackmail" virus that has hit more than 100,000 computers in just four days



This is a hijacking program or "ransomware" that encrypts files except .gif, .exe, and .tmp extensions and gets the credentials of different user accounts to ask for money in return.

More than 100,000 PCs are affected in China for just 4 days from a malware program via WeChat, 2SpyWare announced on Wednesday. Experts say the mass infection began on December 1st.

This is a hijacking program or "ransomware" that encrypts files except .gif, .exe, and .tmp extensions and gets the credentials of different user accounts to ask for money in return.

Their goals are exclusively Chinese steal passwords from popular applications in the country like Alipay, NetEase, Baidu Cloud Disk, Jingdong, Taobao, Tmall, QQ and AliWangWang. All collected information is stored in a remote server controlled by the attackers.

In addition to all this, the virus adds "malicious script in the EasyLanguage programming software that most developers use to create their applications. As a result, they are able to directly expand the "malware" code in any application.

This is not a malicious program to use because instead of asking for the bitcoins rescue insists on paying 16 dollars (110 yuan) with WeChat Pay, Cypet Cyver Security Velvet Security announced on Tuesday.

Nevertheless, vulnerabilities have already been detected in the virus, allowing Chinese cyber security professionals to access the command and control server (C & C using an acronym in English) used for attacks and to develop a tool to assist victims to recover your data. It is also possible to identify the creator of "ransomware" – "Luo "– and your personal information has been sent to the authorities to continue the investigation.


Source link