Crypto Ransomware Attacks Soppy Users Demanding Money

[Goodcat49]

Internet users have recently reported being provoked to open a phishing email containing crypto ransomware links. Cybercriminals used the ransomware program ‘GandCrab’ to encrypt victim’s data and requested a payout in Bitcoin or Dash for lifting a block from their files.

Sweet Messages
According to a report released by the Mimecast Threat Labs Team, criminals used GandCrab to encode user’s files. Victims of a cyber attack were sent emails containing romantic lines, namely ‘This is my love letter to you’, ‘Wrote my thoughts down about you’, ‘My letter just for you’ and ‘Felt in love with you.’

The malicious message has only an asterisk symbol (*) and a zip file attached to it. As it was reported, the zip file is called ‘Love_You_2018_’ and also contains 7 or 8 different numbers. Those, who click the fraudulent link, are offered a language preference (English, Chinese, or Korean). It suggests that the target audience is thoroughly picked out.

Guide on Crypto Payment
Victims were asked to send digital currency, including Bitcoin and Dash, to a certain e-wallet address. Only after the ransom is paid, they can have their files back. Besides, if a payment is not performed within 7 days, the amount of ransom will become twice bigger. It is interesting to notice, that people, who are not accustomed to cryptos, can open a live chat window, which is a part of ransomware, and find information helping to pay the ransom.

Read the details in the article of Coinidol dot com, the world blockchain news outlet: https://coinidol.com/crypto-ransomware-attacks/

[Danezu]

According to Bitdefender, the problem was finally solved.

Today we’re happy to announce that our collaboration with the Romanian Police, Europol and other law enforcement agencies has yielded another new decryptor for all GandCrab ransomware versions released since October 2018.

https://labs.bitdefender.com/2019/02/new-gandcrab-v5-1-decryptor-available-now/