{"id":10538,"date":"2016-01-04T19:31:03","date_gmt":"2016-01-05T00:31:03","guid":{"rendered":"http:\/\/www.thundercloud.net\/infoave\/new\/?p=10538"},"modified":"2016-01-05T09:33:12","modified_gmt":"2016-01-05T14:33:12","slug":"introducing-ransom32-ransomware-with-a-nasty-twist","status":"publish","type":"post","link":"https:\/\/www.thundercloud.net\/infoave\/new\/introducing-ransom32-ransomware-with-a-nasty-twist\/","title":{"rendered":"Introducing Ransom32 – Ransomware with a nasty twist"},"content":{"rendered":"

Introducing Ransom32 – Ransomware with a nasty twist<\/h1>\n

Step right up. Make money by locking other people’s computers. Sign up for the affiliate program and earn 75% of the ransoms you collect! Make thousands of dollars tricking people into installing Ransom32.<\/p>\n

No, unfortunately, that’s not more of TC’s crazy imagination – it’s a fact. Ransom32 was discovered just days ago by the folks at Bleeping Computer, and confirmed and reverse engineered by our friends at Emsisoft.<\/a><\/span><\/p>\n

Ransom32 is the first ransomware that uses Javascript to work its dirty deeds. And the people who invented it are distributing via an affiliate program where anyone who’s willing to stoop low enough can become and affiliate and make money by tricking you into installing it.<\/p>\n

Emsisoft<\/a><\/span>, as far as we know, is one of the few antimalware\/antivirus programs that will detect and warn you before you install Ransom32.<\/p>\n

What happens if you install it? Most all of your documents, pictures, music files, videos, and other personal files will be encrypted and locked, and the only way to open them again is to pay the ransom to and get a decryption code. It’s devious software. Ransom32 has several ways of remaining undetected while its busy locking your files.<\/p>\n

Her is how it looks when your computer is locked.<\/p>\n

\"\"<\/p>\n

In the example above, the ransom is about $35 USD or 0.1 Bitcoins (a virtual currency that’s all the rage right now). If you don’t pay the ransom quickly, the ransom increases to $350 (approximately 1 bitcoin).<\/p>\n

Ransom32 was just recently spotted in the wild and confirmed by both Bleeping Computer and Emsisoft.<\/p>\n

We’ve given you a simple, pain English overview of Ransom32. You should take time to read Emsisoft’s blog<\/a><\/span> to learn more and find out how this nefarious new malware works and how to avoid becoming infected. We recommend that you create backups of your personal files, just in case. And install a good antivirus\/antimalware like Emsisoft<\/a><\/span> to warn you before you install it. Once you install it, there is no way to get rid of it other than by paying the ransom or doing a clean install of Window or using your computer’s factory recovery partition to restore you computer to its factory state.<\/p>\n

\"\"<\/p>\n

Learn more about Ransom32 by reading this Emsisoft blog post<\/strong><\/span><\/a>. Remember, the more you learn about the threats you face and the computer you use every day, the more prepared you will be. The more prepared you are – the safer you are.<\/p>\n","protected":false},"excerpt":{"rendered":"

Introducing Ransom32 – Ransomware with a nasty twist Step right up. Make money by locking other people’s computers. Sign up for the affiliate program and earn 75% of the ransoms you collect! Make thousands of dollars tricking people into installing Ransom32. No, unfortunately, that’s not more of TC’s crazy imagination – it’s a fact. Ransom32 was discovered just\u2026 Read More »<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1433,1669,1674,10],"tags":[],"_links":{"self":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10538"}],"collection":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/comments?post=10538"}],"version-history":[{"count":3,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10538\/revisions"}],"predecessor-version":[{"id":10541,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10538\/revisions\/10541"}],"wp:attachment":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/media?parent=10538"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/categories?post=10538"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/tags?post=10538"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}