toggle

AAPL Stock: 121.3 ( -1.07 )

Printed from http://www.macnn.com

CryptoWall malware collects $1.1M in file ransoms over six months

updated 02:27 pm EDT, Sat August 30, 2014

CryptoLocker derivative attack demands variable ransoms

In a five-month period, CryptoLocker-esque malware CryptoWall has infected 625,000 devices worldwide, and has locked down 5.25 billion files, according to Dell's security researchers. In that same time period, it has exceeded its predecessor's infection rates, and gathered over $1.1 million in file ransoms, with one victim paying out $10,000 in Bitcoin to rescue his own files held hostage by the malware.

The ransomware spreads through malicious attachments to emails and download links sent through the "Cutwail" spam botnet. Starting in June, the emails included links to regular cloud storage providers containing the malware, such as MediaFire and Dropbox, with ZIP files containing the CryptoWall executable.

The Dell SecureWorks group noted "steady but low-level infection rates" from the package, with peaks in infections from time to time. A "sinkhole" was established earier this year, with the server seeing connections from 968 hosts requesting the malware as a result of users being misled to request the infected file.

According to the researchers, the new malware "recursively navigates the file system, selectively encrypting certain file types (e.g., text files, documents, source code). Executables and DLLs are left unmodified to prevent the compromised system from becoming corrupted and unusable." Internal drives, removable media, and network drives including Google Drive or Dropbox shares mapped to a drive letter are targeted for encryption. As is typical for this sort of infection, Mac users are not affected.

At this time, there doesn't apear to be an obvious flaw to allow decryption without payment. The previous CryptoLocker malware wasn't flawed, but the disassembly process by law enforcement led to a method to retrieve encryption keys for users inflicted by the malware.

Infection percentages by country
Infection percentages by country





by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

Follow us on Facebook

toggle

Most Popular

Advertisement

Recent Reviews

HP 14-x030nr 14-inch Chromebook

If you're like us, chances are you've come to realize that you need the ability to access the Internet on the go. Also, you've prob ...

15-inch MacBook Pro with Force Touch

Apple's 15-inch Retina MacBook Pro continues to be a popular notebook with professional users and prosumers looking for the ultimate ...

Typo keyboard for iPad

Following numerous legal shenanigans between Typo -- a company founded in part by Ryan Seacrest -- and the clear object of his physica ...

toggle

Most Commented