Search This Blog

Showing posts with label Cryptovirus. Show all posts

Over 6 million computers in Moscow are infected with Cryptocurrency Mining Virus

In Moscow about 30 percent of all computers are infected with a virus, which allows covertly mining bitcoins.

Herman Klimenko, adviser of the Russian President on Internet development, said that nowadays this is the most common and most dangerous virus. There are about 20 million computers in Moscow, of those, 20-30 percent are infected.

Klimenko noted that the organizers of such schema earn money by "rental" capacity of infected computers for processing Cryptocurrency payments.

As a reminder, on July 21, researchers discovered advertisement botnet Stantinko, which had so many victims from Russia and Ukraine. In the beginning of the month the specialists of "Kaspersky Lab" spotted the wide spread of the virus Xafekopy, which sent subscription request on paid services from victim's phone.

"We do not have information about all computers in Moscow and Russia, we can only talk about our users, 6% of them were attacked in 2017 with the goal of installing" miners "(Cryptocurrency), which makes it quite common type of malicious programs," Antonov Ivanov, an antivirus expert at Kaspersky Lab, quotes the local press.

- Christina

Reveton Ransomware upgraded , now it speaks to victims


Do you ever think a virus can speak to you? It seems like the Ransomware does.  The Reveton Ransomware that prevents victims from using their computers and displays rogue message , has been upgraded - now it speaks to victim, according to TrendMicro.

Ransomware, also referred as cryptotrojans, is a kind of malware that restricts access to the computer system that it infects. Usually it will display a fake message in full screen (victims can't close or access anything) , purporting to come from law enforcement agencies in various countries and instruct victims to pay a fine for allegedly accessing or storing illegal content on their computers.


Interestingly , The latest variant also plays a audio message urging users to pay ransom.



"The user won’t need a translator to understand what the malware is saying – it speaks the language of the country where the victim is located." The researcher says.

Unlike the previous variants, this variant also connects to specific url to send and receive information from a remote user , downloads an encrypted .dll and WAVE file.