Experts discovered a ransomware that forces victims to subscribe to a YouTube channel

Cybersecurity experts have discovered a new ransomware that does not ask for a ransom in cryptocurrency, but forces victims to subscribe to a YouTube channel and leave comments.

The malware, which calls itself Black eye and was allegedly created by an attacker from Indonesia, was noticed by independent specialists from the MalwareHunterTeam.

HELLO ALL YOUR FILES HAVE BEEN LOCKED BY RANOMWARE [sic] BUT CALSE [SIC] YOU CAN ACCESS BAK WITH SUBSCRIBE MY CHANEL [sic] YOUTUBE.read the message, which shows up on victims’ screens.

In the extortionate note, the malware author requires victims to leave comments and subscribe to the ERROR 404 YouTube channel (it currently has 67 subscribers), which features hacking videos (with references and logos to little-known hacker groups), as well as videos shot in school-like space.

It is not yet clear whether this is a real ransomware or just a joke of some teenage hacker, hungry for attention. Namun, according to VirusTotal, the ransomware sample is detected as malware by several antivirus engines at once.

Vice Motherboard also reports that Record Future analysts have confirmed that the ransomware is real. According to them, Black eyeis a ransomware for a single machine, that is, it only affects one computer and does not spread further.

It must be said that this is not the first example of an extortionist who demands a ransom in a non-cryptocurrency. Like in our article about DeadBolt ransomware attacks Qnap NAS devices and demands 50 BTC for master key.

Not all attackers hunt only for profit. Misalnya, back in 2017, the same MalwareHunterTeam specialists found a ransomware that demanded erotic photos from victims.

Your computer has been locked. After we reply, you must send at least 10 nude pictures of you. After that we will have to verify that the nudes belong to you. the message displayed to victims read.

Let me remind you that we also reported that Itu FBI linked the Diavol ransomware to the authors of the TrickBot perangkat lunak perusak.

Helga Smith

Saya selalu tertarik pada ilmu komputer, terutama keamanan data dan tema, yang disebut saat ini "ilmu data", sejak remaja awal saya. Sebelum masuk ke tim Penghapusan Virus sebagai Pemimpin Redaksi, Saya bekerja sebagai pakar keamanan siber di beberapa perusahaan, termasuk salah satu kontraktor Amazon. Pengalaman lain: Yang saya dapatkan adalah mengajar di universitas Arden dan Reading.

Satu komentar

Tinggalkan Balasan

Situs ini menggunakan Akismet untuk mengurangi spam. Pelajari bagaimana data komentar Anda diproses.

Tombol kembali ke atas