The notorious ransomware – a short history, introduction and how to protect against them.
You probably think that ransomware is something new, that emerged from dark cyberspace not long ago. That is entirely wrong, ransomware appeared back in December 1989, long time ago. The father of ransomware is Joseph L. Popp – American biologist educated at Harvard. The method he used is very different from today’s practices.
It all begins with him walking into a post office with a massive stack of envelopes labeled with PC Cyborg Corporation name. As soon as he dispatched the massive stack of envelopes the new era of ransomware begun. This was the very first ransomware case that used as deploy method a service that was centuries old: the post office.
All the envelopes, 20.000 in number, arrived in 90 countries around the world at different laboratories studying AIDS containing a 5 ¼-inch floppy disk. In one of the attacks a female scientist from World Health Organizations, joyfully inserts the 5 ¼-inch floppy disk into her computer to study the latest discoveries about AIDS in the hope that a cure can be found.
After she inserts the floppy disk, the computer displayed only the message “Restart your computer now,” after the demanded operation was done another message saying Turn on your printer, which will print a letter requesting $189 for the encryption key, which must be sent to a P.O. Box in Panama.
One Italian Laboratory lost a decade of work after the ransomware scared them in such way that they deleted everything causing irreparable damages to the AIDS research program.
Joseph L. Popp was later arrested at his parent’s house in Ohio, but the significant damage was already done: cyber-ransomware was created.
Today’s ransomware is more different and sophisticated then Joseph L. Popp ransomware which was decrypted very quickly by the computer technicians from that time. Most of the ransomware form now days are deployed using malware, making this type of cybercrime one of the most prolific and profitable making attacks of this type rise by 50% in 2017 alone.
All ransomware malware is divided into two distinct categories: Screen Lockers and Encryptors. For a better understanding, our cybersecurity team will walk you through the concepts or Screen Lockers.
The reason why ransomware situations work most of the times is that of FEAR, one of the very first emotions, old as the world, that people experience. Because of FEAR, the perpetrator has the upper hand on the targeted victim.
Cyber ransomware work, in the same way, taking advantage of the fear of losing valuable and sensitive data or precious pictures with your family and friends.
The less sophisticated ransomware types that rely on this kind of emotions are Screen Lockers.
Screen Lockers does less to no harm to you and your data, it targets your emotions with false accusations and repercussions. This type of malware is easily distributed through infected emails or malicious software downloaded from obscure sites.
Here are two of most common and used types of ransomware:
Metropolitan Police scam that hits user from now when he is doing day by day work or surfing the internet. Out of nowhere a full-screen window pop-ups at victims screen displaying a false law enforcement logo and saying with capital letters that METROPOLITAN POLICE is accusing the victim of viewing/storage and dissemination of banned pornography (child pornography/zoophilia/rape etc.).
After letting that message sink and create deep fear into victim’s heart, another screen will pop up displaying a window containing the web camera feed from victim’s device letting him look at his face to imply even more fear to trick him that is under surveillance. After this no action will work, the video feed window and the message window will not go away demanding victim a $300 fine to drop accusations.
The second one is a variation of METROPOLITAN POLICE scam, named FBI MoneyPak. This type is making accusations for illegally downloading and storing music, movies or software. It is tricking its victims to think they are under surveillance and will go to prison by displaying their IP address.
If you ever encounter this type of attacks don’t worry, nothing critical will happened to you, your device or your data. Your machine is infected with a malware probably downloaded from shady parts of the web or received by email, this type of malware just hijack your device to imply fear and trick you to pay the fine.
Never ever pay the fine, it is a scam. Just download top antivirus software, and the malware will be gone, then keep that antivirus software active all the time in your device, updating it, the OS and other apps as soon as an update is available and you should be safe having nothing to worry about.
The real problem, the troublemakers, are encryptors. They can do an enormous amount of damage making the data they encrypt irrecuperable in most of the time.
One type of encryptor demanding ransomware is CrytoLocker, which makes users data irrecuperable within 72 hours after the infection if the pay is not done. It is using a countdown to imply more fear and trick the victim to pay the amount demanded. This type of ransomware is no joke.
CrytoLocker is deployed through email, and a victim is tricked to download a zip file attached to a particular email that contains a password for that zip file. After entering the password, a private encryption key is generated and the 72h begin, making any action a little too late for the victim. In many cases, the key is not delivered so don’t bother to pay the demand only if the data has enormous importance for you it worth the try. The only thing that can be undone in this case is having, always, a backup file of your data.
The more notorious and dangerous ransomware encryptors are Petya and WannaCry launched by North Korea on 12th of May last year. This type of malware is indigenously designed, incorporating everything terrible that malware can have.
They don’t need a deploying method because they can self-replicate from an infected device to travel through internet and networks looking for security flaws to infect other machines, once a device is breached all its data is encrypted, and nothing can be done.
Let’s not forget that WannaCry successfully reached and encrypted a quarter of million devices from 150 counties which means that in a matter of days the whole world was hit by a single destructive malware.
Our cybersecurity analyst says frequent data backups can avoid this kind of situations, frequent OSs and software updates and last but not least investing in top antivirus software.
Regular users are the most affected by malware this day because most of them do not care about what antivirus they have installed in their systems.
Users can download antivirus developed by our company directly by clicking the download banner from the end of the page.
Our free download antivirus can help users to protect their Mac or Windows devices against malware and adware.
We offer a free antivirus one day license to all our users who want to test the full power of our antivirus solution.
Our antivirus can detect a vast spectrum of threats, from dangerous malware to nasty browsers extensions used for mining the crypto-currency.
The antivirus our company is offered is a certified product of OPSWAT.
Most of the companies don't care about cybersecurity until they suffer a breach.
A healthy company must perform a penetration test from time to time. The penetration test must execute against all the assets of the company, including the workers who are the most vulnerable to the social engineering attacks.
A penetration test can be done either by a security specialist from inside of the company or by hiring an external cyber security company who can take care of everything.
Besides penetration test, a company must have a minimum healthy cybersecurity system installed like antivirus or firewall.
CyberByte company can perform various penetration tests on all the spectrum of PCI/DSS compliance to the red team, perimeter testing, and social engineering.
We also provide services to employee profiling and cyber threat monitoring, since most of the data breaches this day come from the inside of the company.
To check our penetration test services go to the Services tab from the main menu.
Windows users can download free antivirus solution CyberByte by clicking the banner. The free antivirus will help you to know if your PC is infected. Windows free antivirus of CyberByte is an awarded software for malware detection.
Mac / MacOS / OS X users can download free Mac antivirus solution CyberByte by clicking the banner. The free antivirus will help you to know if your Mac is infected. MacOS / OS X free antivirus of CyberByte is an awarded software for malware detection. The free antivirus for Mac is available for new MacOS and older OS X versions.
Features of CyberByte™ antivirus:
- Protects you from all kind of threats
- CyberByte™ custom detection engine includes Mac and Windows malware protection and detection
- Fastest scanning times in the market
- Crypto Mining rogue extensions/malware detection
- Ransomware detection - don’t negotiate with ransomware cyber terrorists – keep your Mac and Windows safe
- Active live protection from background
- Certified Threat Detector by OPSWAT
- Easy to Install
- Easy to Manage
- Incredible value for money
Invisible, protecting you from behind the scenes - You will not feel it is installed on your computer, easy on the resources, like a protection software should be.
Original technology that combines behavioral heuristic analysis with powerful signatures database – the CyberByte™ Protection Engine delivers top of the line protection in an instant.
Fastest scanning times in the market – your time is precious, but also so is your digital life – CyberByte™ delivers fast scanning saving both time and your valuable data.
Don’t negotiate with ransomware cyber terrorists – keep your Mac safe and don’t ever end up paying for what is already yours.
Protect others as well – the CyberByte™ Protection Engine not only detects the threat but stops it from spreading to other Macs or Windows machines.
Don’t let strangers use your resources – more than 80% of the attacks are crypto mining driven. Are you sure your computer is not mining for crypto while you read this text?
Our malware protection will continuously look after your device providing the best security against viruses. Give us the chance to prove it by downloading the antivirus for your device.
CyberByte Antivirus is a certified product by OPSWAT (OPSWAT is a San Francisco-based software company that provides solutions to secure and manage IT infrastructure. Founded in 2002, OPSWAT delivers solutions that provide manageability of endpoints and networks, and that help organizations protect against
zero-day attacks by using multiple antivirus engine scanning and document sanitization.
To learn more about OPSWAT’s innovative and unique solutions, please visit http://www.opswat.com).
CyberByte Antivirus comes in two flavors:
MacOS Version - the free download Mac antivirus available on our website (https://mac.cyberbyte.org)
Windows Version - the free download Windows antivirus available on our website (https://pc.cyberbyte.org)
The procedure is simple:
Just free download antivirus from CyberByte website either for Mac or Windows.
Install it using the antivirus installer package.
Windows and Mac users will free malware scan their devices. The scan duration depends on how many files the end user has.
CyberByte antivirus will show if any files are infected after the scan is finished.