As an advancement in Malwares there has been a new technology that is emerging very rapidly in the name of #Ransomware. There has been many Ransomware that hits the market. Recently a Ransomware that defaces the entire site has been revealed.
Security Researchers has found a new Ransomware in the name of #CBT Locker that brings down the whole website down. The Ransomware encrypts the whole data that is available in the server.
#CBT Locker once implanted replaces the index.html with its own index.html and then encrypts the entire file stored in server and demands a ransom of about 0.4 Bitcoins.
The Ransomware also has the guide how to proceed with further steps and also there is a unique feature with this Ransomware such as they are providing a test decryption key which will randomly decrypt two files and then will show that "Congratulations Test File Decrypted Successfully". Then after the payment the key to decrypt all the files will be released.
It is stated that AES-256 encryption has been used to perform these and there has been also time allocated and the ransom if not paid then the ransom will be doubled to 0.8 Bitcoins.
It is recommended not to click on any suspicious link and also should have a good Antivirus which is updated regularly.
One thing I personally cant get clear is that if AES used being Symmetric key encryption same key should be used for encryption and decryption. If the key can be used to decrypt any 2 RANDOM files then why cant they be used to encrypt other files.
There is another cases in ransomware where they states that it uses RSA for encryption but really used AES or DES for encryption. Lets stay tuned for more information.
P.S: The post is to create awareness and not to create any negative impact.
No comments:
Post a Comment