1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Ransomware: New CryptXXX variant defeats Kaspersky decryption tool

Discussion in 'CSO' started by RSS, May 11, 2016.

  1. RSS

    RSS New Member Member

    Researchers at Proofpoint, who first discovered CryptXXX a few weeks ago, have detected a new variant running in the wild on Tuesday, which defeats the previously released decryption tool offered by Kaspersky.

    In addition to encrypting files on the victim's computer and network shares, the CryptXXX family of Ransomware also acts like a data stealing Trojan, hijacking saved login credentials stored in the browser, email client, and IM application. If the victim has a Bitcoin wallet, CryptXXX will steal those too, and then immediately demand $500 Bitcoin to reverse the encryption.

    In April, U.S. toy maker Maisto had their website infected with malicious JavaScript, which delivered unsuspecting visitors to a landing page managed by the Angler Exploit Kit, in order to deliver version 1.x of CryptXXX.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page