Experts discovered a ransomware that forces victims to subscribe to a YouTube channel

Cybersecurity experts have discovered a new ransomware that does not ask for a ransom in cryptocurrency, but forces victims to subscribe to a YouTube channel and leave comments.

The malware, which calls itself Black eye and was allegedly created by an attacker from Indonesia, was noticed by independent specialists from the MalwareHunterTeam.

HELLO ALL YOUR FILES HAVE BEEN LOCKED BY RANOMWARE [sic] BUT CALSE [SIC] YOU CAN ACCESS BAK WITH SUBSCRIBE MY CHANEL [sic] YOUTUBE.read the message, which shows up on victims’ screens.

In the extortionate note, the malware author requires victims to leave comments and subscribe to the ERROR 404 YouTube channel (it currently has 67 subscribers), which features hacking videos (with references and logos to little-known hacker groups), as well as videos shot in school-like space.

It is not yet clear whether this is a real ransomware or just a joke of some teenage hacker, hungry for attention. Egter, according to VirusTotaal, the ransomware sample is detected as malware by several antivirus engines at once.

Vice Motherboard also reports that Record Future analysts have confirmed that the ransomware is real. According to them, Black eyeis a ransomware for a single machine, dit wil sê, it only affects one computer and does not spread further.

It must be said that this is not the first example of an extortionist who demands a ransom in a non-cryptocurrency. Like in our article about DeadBolt ransomware attacks Qnap NAS devices and demands 50 BTC for master key.

Not all attackers hunt only for profit. Byvoorbeeld, back in 2017, the same MalwareHunterTeam specialists found a ransomware that demanded erotic photos from victims.

Your computer has been locked. After we reply, you must send at least 10 nude pictures of you. After that we will have to verify that the nudes belong to you. the message displayed to victims read.

Let me remind you that we also reported that Die FBI linked the Diavol ransomware to the authors of the TrickBot malware.

Helga Smith

Ek het altyd in rekenaarwetenskap belanggestel, veral datasekuriteit en die tema, wat deesdae genoem word "data wetenskap", sedert my vroeë tienerjare. Voordat u as hoofredakteur in die virusverwyderingspan kom, Ek het as 'n kuberveiligheidskenner in verskeie maatskappye gewerk, insluitend een van Amazon se kontrakteurs. Nog 'n ervaring: Ek het onderrig in Arden en Reading universiteite.

Een opmerking

Los 'n antwoord

Hierdie webwerf gebruik Akismet om strooipos te verminder. Leer hoe jou opmerkingdata verwerk word.

Terug na bo-knoppie