There are many different types of malicious threats out there: viruses, scareware, backdoors, worms, and ransomware. To learn more about all of them, check out our “Virus Lab” here. Today, we want to focus on ransomware, because it’s on the rise. Keep reading to learn more.
What is ransomware?
Ransomware is an umbrella term for a group of viruses that holds valuable information hostage– either by encrypting your data so that it is unreadable or by totally locking you out of your computer.
Ransomware gets its name due to its general nature – it threatens harm by keeping your personal data captive, and demands a financial ransom in return. Unfortunately, once a computer has been infected with ransomware, there is little anyone– even the F.B.I. — can do to restore the files
Based on a report from McAfee’s threat research team, a major trend is the growth of ransomware attacks which went up by 118%!
Biggest Ransomware Families
There was a 118% increase in ransomware attacks found by the previous sited report from McAfee. This includes the discovery of new ransomware families that use innovative techniques to target computer users.
The three biggest ransomware families are Dharma, GandCrab, and Ryuk.
Dharma, which makes changes by infecting computer files and adding extensions to them, has been in operation since 2016 and will continue to infect computers, causing damages that are not decryptable.
The GandCrab ransomware infects computers by dropping a “GandCrab.exe” file. It also encrypts your files – locking them up and making them inaccessible to the computer owner.
The Ryuk ransomware is known for targeting newspaper printing services in the United States. The ransomware is likely the work of a cybercrime organization instead of a targeted attack created by a specific nation-state.
New Ransomware Anatova
A disturbing new ransomware family that has emerged is the Anatova family. This ransomware usually uses the icon of a game or application, making it appealing to users who are more likely to click on it thinking it’s a fun computer game.
The Anatova ransomware also adapts very quickly and spreads easily amongst computers and is very difficult to remove via anti-ransomware tools and methods.
In fact, the files and data locked by Anatova cannot be restored without paying the group behind Anatova, even if you use a generic decryption tool to try to unlock it. This makes it more important for computer users to create regular backup copies of their computer files.
What should you do?
- Keep up to date with the latest virus trends – if you’re reading this article you’re already doing a great job staying up-to-date about the latest threats! Keep it up!
- Have an antivirus installed on your computer and keep it updated – this will stop a lot of threats and keep you protected.
- Run regular FixMeStick scans – often viruses get past your antivirus and then hide on your system. Ransomware can often do this. Make sure you remove it before it encrypts your files. To do this run regular FixMeStick scans.
Have a question? Leave it in the comments below!