Ransomware - Home

Beware of Spora – a professionally designed ransomware

Quick Heal Security Labs / 9 years
3
4 min read

Spora is a recent addition to the ransomware family that Quick Heal Lab has come across. It is a file encryptor ransomware that encrypts a user’s files with strong encryption algorithm and demands a ransom. Spora is launched with a good infection routine, the capability to work offline, well-designed and managed payment portal dashboard, decryption […]

The Remote Desktop Protocol Vulnerability – ‘CVE-2012-0002’ is not dead yet!

Pradeep Kulkarni / 9 years
0
3 min read

On March 13, 2012, Microsoft disclosed the details of a ‘critical vulnerability’ called Remote Desktop Protocol Vulnerability – CVE-2012-0002 in its bulletin. And even four years after this vulnerability was patched, it is still being exploited in the wild by attackers to carry out ‘Remote Code Execution’ on their victims computers. Affected Operating Systems: Microsoft […]

Ransoc – An unusual ransomware that threatens to expose your personal information

Quick Heal Security Labs / 9 years
75
3 min read

Mostly a ransomware encrypts your files and demands money in exchange for a key that can decrypt the data. And the payment is demanded in Bitcoins. Ransoc is different in the way it works and the medium it uses for the payment. How does Ransoc work? Once your computer is infected by Ransoc, it gathers […]

Alert! A Fake Flash Player Website is Spreading Locky Ransomware

Quick Heal Security Labs / 9 years
3
3 min read

The Locky ransomware, like all other ransomware, encrypts user data and demands a hefty ransom in exchange for the key that decrypts the data. A variant of this ransomware called ‘thor’ was recently found being distributed via a fake ‘Flash Player Update’ downloading website that goes by the name ‘fleshupdate.com’. The distribution of unwanted software […]

5-compelling-reasons-not-pay-ransomware-attack

5 Compelling Reasons Not to Pay Ransom to Hackers

Sakshat Karkare / 9 years
35
5 min read

Unless you’ve been living under a rock, you would know what a ransomware is and why are computer security folks constantly speaking about it. To put things into context, ransomware is a malicious software that locks your computer or encrypts the files stored in it. It then demands a ransom to let go off the […]

Alert! Ransomware is Being Spread through the Ammyy Admin Website

Sakshat Karkare / 9 years
104
2 min read

This is a precautionary advisory for users who frequently visit the website of the popular remote desktop sharing software called Ammyy Admin. Quick Heal Labs has observed that a new variant of the Cerber3 Ransomware is being spread through the Ammyy Admin software on the official Ammyy Admin website. This news, however, is not surprising […]

Ransomware

Be Careful of the KMSPico Activator – It could be a Ransomware!

Quick Heal Security Labs / 9 years
4
2 min read

If you are using KMSPico Activator for activating your Windows or MS Office, then you could be risking yourself to a ransomware infection. Quick Heal Threat Research Labs has recently observed a new variant of ransomware called Domino that is using this activator as a carrier. The malware encrypts the infected files and appends the […]

How to Recover Files After a Ransomware Attack?

Sakshat Karkare / 9 years
23
3 min read

What if you know your data is securely backed up when a ransomware strikes and you don’t have to worry about recovering your files? The Backup and Restore feature of Quick Heal helps you achieve this. What is a Ransomware? Ransomware is a malware that either locks an infected computer or encrypts all the files […]

Ransomware Getting Delivered Using Script Files

Sakshat Karkare / 9 years
2
3 min read

The ransomware threat has significantly grown over time. Each day, a new variant gets added to the ransomware family. Malware are usually delivered through exploit kits and spam emails. Speaking of spam emails, they are either loaded with malicious document files installing the malware or malware directly inside a ZIP file. Cyber criminals continue to […]

Ransomware

Troldesh Ransomware brute-forcing its way into systems

Sakshat Karkare / 9 years
4
4 min read

Ransomware creators deploy more than just one way to trap their victims. These include malicious email attachments, infected links, malvertising, and exploit kits. However, over the past few weeks, we have been observing criminals using a new carrier to deliver the ransomware malware. It mainly affects Windows Server Operating Systems. The Troldesh ransomware (also known […]