Ransomware

Ransomware is malware that tries to extort money from the victim by blocking normal operation of a computer and/or encrypting the victim’s files and demanding payment.

one class of ransomware will display threatening messages
- e.g.,
  - requiring Windows to be reactivated
  - computer has been locked by the police
uses payment methods that allow the attacker to extort money without revealing their identity or being traced by local law enforcement
- e.g.,
  - wire transfer, cryptocurrency, or premium rate phone lines

Info

Scareware refers to malware that displays alarming messages, often disguised to look like genuine OS alert boxes.

attempts to alarm the user by suggesting that the computer is infected or has been hijacked

Crypto-Ransomware

Crypto-ransomware attempts to encrypt data files on any fixed, removable, and network drives.

user will be unable to access the files without obtaining the private encryption key
- held by the attacker
extremely difficult to mitigate

adam's notes

Table of Contents

Ransomware

Crypto-Ransomware

Graph View

Backlinks