CryptoDefense rakes in $34K in bitcoin ransom

Share this article:

Cyber criminals have raked in more than $34,000 in the month since CryptoDefense Trojan, a variant of CryptoLocker, first appeared in February 2014 even though a poor implementation of cryptography has left “hostages” with an escape route, according to Symantec.

Symantec has blocked more than 11,000 unique CryptoDefense infections, which are spammed out via email to Windows computers. The ransomware holds victim files hostage by employing public-key cryptography using strong RSA encryption and prevents restoration until a $500 ransom payment is made in bitcoins through a unique Tor payment web page address. If the payment is not made within four days, the ransom doubles.

However, victims need not cough up a penny. They can circumvent the attack and restore files because poor cryptographic implementation by the malware authors leaves the decryption key they're holding for ransom on the infected computers.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Experts discover variant of BIFROSE backdoor in targeted attack

A variant of the BIFROSE backdoor which is more evasive than its predecessor has been discovered by experts.

Apple health app protocol bars developers from selling user info

Under its new protocol, app developers are prohibited from selling users' personal health information.

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, ...

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.