Complex ransomware is beyond the decryption capabilities of the AV industry


Ransomware involves the use of malicious code to hijack user files, encrypt them and then demand payment in exchange for the decryption key.The first piece of ransomware to use a sophisticated encryption algorithm, Gpcode.ac, was detected in January 2006 and used the RSA algorithm to create a 56-bit key. Since then, the author of Gpcode has released several increasingly complex variants of the virus and in June released Gpcode.ag, which used a 660-bit key.

Hackers may make ransomware so complex that it is beyond the decryption capabilities of the anti-virus industry, according to a new report from Kaspersky Lab. The report, Malware Evolution: April June 2006, Hidden Wars, warns that authors of ransomware are pushing the boundaries of modern cryptography by using ever-more sophisticated encryption algorithms. Security Park - Complex ransomware is beyond the decryption capabilities of the anti-virus industry

Linked by shanmuga Tuesday, 25th July 2006 9:46PM