Malicious Website / Malicious Code: Cyber Extortion Attack II
Websense® Security Labs™ has received reports of a new attack that attempts to extort money from users by encoding files on their machines, and then requesting payment for a decoder tool. The attack dynamics are very similar to the original discovery we reported on May 23, 2005 : http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=194.
This attack appears to only be attacking Russian speakers and was first reported on Kaspersky's research blog:
http://www.viruslist.com/en/weblog. Several vendors are calling the two pieces of malcode (JuNy.A and JuNy.B).
Upon infection, the application searches on the machine or any mapped drives for more than 100 file types by extension. Websense® - Security Labs Alert: Cyber Extortion Attack II
Back to: PC Security, privacy news