CoinVault victims can use tool to decrypt files encrypted by ransomware
Victims of one strain of "ransomware" may be able to get their data back. A collaboration between the Netherlands Police's National High Tech Crime Unit (NHTCU) and security company Kaspersky, a tool has been created that can be used to decrypt data encrypted by the CoinVault malware, potentially saving many users from paying a random or having to rebuild their data if backups failed.
Mayor Duggan says hackers wanted 2,000 Bitcoins, details technical issues in city
In a speech on Monday, Detroit Mayor Mike Duggan revealed some of the recent technical problems the city is facing. As if bankruptcy and other financial woes from the recession weren't enough for the city, Duggan said that Detroit has been a target for various cyberattacks, including an attempt by hackers to hold one of the city's databases for ransom.
Decrypt CryptoLocker to help recover files lost to malware
Victims of the CryptoLocker ransomware may be able to unlock their files without having to pay. Security experts from FireEye and Fox IT are hosting Decrypt CryptoLocker, a site dedicated to providing keys for affected systems, allowing for encrypted files to become available to users who chose not to pay the malware creator's ransom demand.
Trojan.Koler.A disables phones until $300 fine paid to scammers
A new trojan targeting Android devices has been discovered that is holding phones hostage until a fine is paid. Ransomware, in this case the Trojan.Koler.A, accuses the device's owner of looking at illegal pornography and threatens action by authorities. The ransomware asks for a $300 fine to be paid via "untraceable payment mechanisms such as Paysafecard or uKash" according to Ars Technica's report.
Hackers change domain details to infect ransomware
Hackers have altered DNS records of websites hosted by Go Daddy, with the aim of infecting visitors with ransomware. The attackers are adding subdomains to the DNS records, pointing to a malicious IP address under their control, allowing victims to believe they are going to the right website, and for the pages to avoid various security protection mechanisms. This attack comes two months after an alleged attack on the Go Daddy network.