Introduction
Ransomware is a type of malicious software (malware) created with the order to block access to files or systems only release them after the payment of a specified value. It is as if it were a kidnapping, but virtual. In the next lines, you will better understand what ransomware is, will have prevention tips and you will see instructions on how to do in case your computer or system to be infected by a plague of the type.
Ransomwares: the malware hijackers
The word ransomware already makes clear the reason this type of malware to be so scary: “ransom” is an English term that is used in reference to ransom, demand a ransom, to pay for rescue, and thusforth. The association of ransomwares with practices of sequestration, therefore, it is not an exaggeration.
Despite being seen as a security issue recent, the ransomwares are not a new concept: the first references to this type of pest digital refer to the end of the the decade of the 1980s.
At that time, it was possible to find a virus OF called Casino that, around 15 April, the copied data of the RAM memory and the FAT file system, and erased all the the content of the HD. The user did not have that shell out no cash, but could only recover the data if pontuasse in a game style slot level the Casino displayed on the screen.
But, at that time, there were already malware developed with the aim of extorting money from the victim. The PC Cyborg, whose first appearances dating back to 1989, was a malware distributed by floppy disk that criptografava the C:\ drive and required payment in cash — often in the amount of$ 189 — in the name of the PC Cyborg Coporation to release the data. Several versions of this attacker have been developed over the years the following, all with the same purpose.
In fact, the PC Cyborg rewrite only the file system autoexec.bat, concealed folders and criptografava the names of files in unit C. Ransomwares really able to encrypt entire contents would only arise years later. The most are limited to the simplest actions: change names of files, display of a screen with a threat, and so on.
The first ransomwares modern with significant power range emerged around 2005 with pests like Krotten, Cryzip , and MayArchive, that used encryption RSA for block data or systems, and require payments for the release.
Since then, the incidence of ransomwares not for growing. The reason is obvious: the Internet makes it easy to spread. In addition, this type of prague has the potential to generate large amounts of money to criminals who work in online media.
As a ransomware propagates
The mechanisms of propagation of ransomwares not are different from the methods used to disseminate viruses and other malware: emails, social networks (such as Facebook and Twitter), instant messaging services (such as WhatsApp and Skype), and fake web sites are the means more used to this end.
In virtually all there is some engineering tactic social: the message is accompanied by an argument that tries to to convince you to click on a link or attachment that leads to ransomware. The text you can say, for example, that you have a debt not paid, pending with the justice, a security update of the bank or an invitation to view intimate photos of a famous personality. Note as these texts try to scare the user or sharpen the curiosity. In both circumstances, the person tends to have less cautious and, then, click on the link or in the attachment.
