Pakar menemui perisian tebusan yang memaksa mangsa melanggan saluran YouTube

Cybersecurity experts have discovered a new ransomware that does not ask for a ransom in cryptocurrency, but forces victims to subscribe to a YouTube channel and leave comments.

The malware, which calls itself Black eye and was allegedly created by an attacker from Indonesia, was noticed by independent specialists from the MalwareHunterTeam.

HELLO ALL YOUR FILES HAVE BEEN LOCKED BY RANOMWARE [sic] BUT CALSE [SIC] YOU CAN ACCESS BAK WITH SUBSCRIBE MY CHANEL [sic] YOUTUBE.read the message, which shows up on victims’ screens.

In the extortionate note, the malware author requires victims to leave comments and subscribe to the ERROR 404 YouTube channel (it currently has 67 subscribers), which features hacking videos (with references and logos to little-known hacker groups), as well as videos shot in school-like space.

It is not yet clear whether this is a real ransomware or just a joke of some teenage hacker, hungry for attention. Namun begitu, according to VirusTotal, the ransomware sample is detected as malware by several antivirus engines at once.

Vice Motherboard also reports that Record Future analysts have confirmed that the ransomware is real. According to them, Black eyeis a ransomware for a single machine, itu dia, it only affects one computer and does not spread further.

It must be said that this is not the first example of an extortionist who demands a ransom in a non-cryptocurrency. Like in our article about DeadBolt ransomware attacks Qnap NAS devices and demands 50 BTC untuk kunci induk.

Not all attackers hunt only for profit. Sebagai contoh, back in 2017, the same MalwareHunterTeam specialists found a ransomware that demanded erotic photos from victims.

Your computer has been locked. After we reply, you must send at least 10 nude pictures of you. After that we will have to verify that the nudes belong to you. the message displayed to victims read.

Let me remind you that we also reported that The FBI linked the Diavol ransomware to the authors of the TrickBot malware.

Helga Smith

Saya sentiasa berminat dalam sains komputer, terutamanya keselamatan data dan tema, yang dipanggil pada masa kini "sains data", sejak awal remaja saya. Sebelum menyertai pasukan Pembuangan Virus sebagai ketua Editor, Saya bekerja sebagai pakar keselamatan siber di beberapa syarikat, termasuk salah seorang kontraktor Amazon. Satu lagi pengalaman: Saya ada mengajar di universiti Arden dan Reading.

Satu komen

Tinggalkan pesanan

Laman web ini menggunakan Akismet untuk mengurangkan spam. Ketahui cara data ulasan anda diproses.

Butang kembali ke atas