Cryptolocker virus






The Crypto Locker ransom ware attack was a cyber attack using the Crypto Locker ransom ware that occurred from 5 September 2013 to late-May 2014. The attack utilized a trojan that targeted computers running Microsoft Windows, and was believed to have first been posted to the Internet on 5 September 2013. It propagated via infected email attachments, and via an existing botnet; when activated, the malware encrypts certain types of files stored on local and mounted network drives using RSA public-key cryptography, with the private key stored only on the malware's control servers. The malware then displays a message which offers to decrypt the data if a payment (through either bitcoin or a pre-paid cash voucher) is made by a stated deadline, and it will threaten to delete the private key if the deadline passes.


Comments

Post a Comment

Popular posts from this blog

Image
                                                Sasser Virus Sasser  is a  computer worm  that affects computers running vulnerable versions of the  Microsoft   operating systems   Windows XP  and  Windows 2000 . Sasser spreads by exploiting the system through a vulnerable  port . Thus it is particularly virulent in that it can spread without user intervention, but it is also easily stopped by a properly configured  firewall  or by downloading system updates from  Windows Update . The specific hole Sasser exploits is documented by Microsoft in its  MS04-011  bulletin, for which a patch had been released seventeen days earlier. The effects of Sasser include the  news agency   Agency France- Presse  (AFP) having all its satellite communications blocked for hours and the  U.S.  flight company  Delta Air Lines  having to cancel several trans- atlantic flights because its computer systems had been swamped by the worm.                                                         Sou
Read more
Image
                                            Stuxnet Virus    Stuxnet  is a  malicious   computer worm .  Stuxnet specifically targets  programmable logic controllers  (PLCs), which allow the automation of electro mechanical processes such as those used to control machinery on factory assembly lines, amusement rides, or  centrifuges  for separating nuclear material. Exploiting four  zero-day flaws .  Stuxnet functions by targeting machines using the  Microsoft Windows  operating system and networks, then seeking out  Siemens  Step7 software. Stuxnet reportedly compromised Iranian PLCs, collecting information on industrial systems and causing the fast-spinning centrifuges to tear themselves apart.  Stuxnet’s design and architecture are not domain-specific and it could be tailored as a platform for attacking modern  supervisory control and data acquisition  and systems (e.g., in factory assembly lines or power plants), the majority of which reside in Europe,  Japan  and the US.   Stux
Read more