Service with a smirk: PadCrypt ransomware first to offer live chat 'help'

PadCrypt is the first ransomware to offer a live support chat feature, and the first to provide a software uninstaller.
PadCrypt is the first ransomware to offer a live support chat feature, and the first to provide a software uninstaller.

If they gave out customer service awards to ransomware developers, the black hats behind the newly discovered ransomware PadCrypt might win the prize.

According to a report from BleepingComputer, PadCrypt is the first ransomware to offer a live support chat feature for victims seeking online assistance with paying their ransom and decrypting locked files. Exposed last Sunday by Swiss security researchers at @abuse.ch, PadCrypt is also the first ransomware program to provide victims with a software uninstaller, which is downloaded along with the malicious encryption code at the time of infection.

PadCrypt is distributed via “spam that contains a link to a zip archive that contains what appears to be a PDF file,” BleepingComputer wrote. But the supposed PDF file is actually an executable that downloads malware from cybercriminals' command-and-control servers. These C&C servers were disabled following their discovery, the report continued.

You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS