Slashdot Mirror

← Back to Stories (view on slashdot.org)

Badly-Coded Ransomware Locks User Files and Throws Away Encryption Key (softpedia.com)

Posted by samzenpus on from the better-luck-next-time dept.

An anonymous reader writes: A new ransomware family was not tested by its developer and is encrypting user files and then throwing away the encryption key because of an error in its programming. The ransomware author wanted to cut down costs by using a static encryption key for all users, but the ransomware kept generating random keys which it did not store anywhere. The only way to recover files is if users had a previous backup. You can detect it by the ransom message which has the same ID:qDgx5Bs8H

3 of 128 comments (clear)

  1. Re:Windows by Grishnakh · · Score: 3, Insightful

    And how exactly does someone get infected with this anyhow? According to your link: "The malware requires administrator privileges to run and, presumably, a sysadmin who would allow for such a program to run unbridled." There's no mention on that page, or the "Dr. Web" page it links to, how anyone actually gets infected with this thing other than somehow getting themselves a copy and then intentionally running it as root. If there is an infection path it takes in the wild, these pages aren't specifying.

    It's also mentioned that it works on systems running MySQL and Apache. Who runs Apache any more? Every serious Linux webserver is running Nginx now.

    Finally, you're comparing apples to oranges. The Windows malware is for desktop and/or server Windows. The Linux malware appears to only be targeted at webservers. I don't know about you, but I don't run a webserver; for my websites I just use simple shared hosting and let someone else worry about that stuff (if my web host gets infected, no big deal, I'll just reload from backups). I'm worried about my desktop (/laptop) PCs, but since I run Linux there, I don't have to worry about any *serious* malware threats. No one has yet proven that there is any *serious* malware threat for desktop Linux.

  2. Re:Just asking...... by Anonymous Coward · · Score: 5, Insightful

    What the hell is wrong with people like you? It's not that the guy isn't a first class cunt, but what sort of poorly controlled emotion causes a person to warm to the idea of torture and death? I sometimes wonder whether some humans have a repressed bloodlust and they use righteous indignation as an excuse to bring it out.

    Sure, lock the guy up, seize everything, whatever, following due process. Be more civilised than he is, not less.

  3. Re:Like the old viruses by Anonymous Coward · · Score: 2, Insightful

    Hell yes! Those were the good old days. Corrupt and destroy, for no reason other than sheer malice. Yeah!