Vietnam’s internet security firm Bkav has released a warning over a new version of GandCrab ransomware, which is hitting Vietnamese internet users on a wide scale, with an estimated 3,900 computers across the country currently infected with the blackmail malware, VnEconomy reported.
The ransomware is the fifth version of the GandCrab new-generation malware, according to an analysis from Bkav security experts.
First spotted in January of this year, the sophisticated and quickly changing ransomware has been constantly upgraded with new features by hackers for harder encryption and to avoid detection, with four versions in use already.
Cybercriminals spread the GandCrab ransomware by sending internet users a fake email, urging them to open an attached text file. Once the victim opens the email containing the GandCrab, their computer is infected with the malicious code, Bkav explained.
As a result, all the data on the computer is encrypted and cannot be opened.
Next, a ransom notice appears on the computer screen, asking the victim to install a Tor browser and pay an amount between US$200 and US$1,200 depending on the number of encrypted files, using e-coin Dash or Bitcoin.
To date, none of the victims have reportedly made any ransom payments yet, stated Bkav.
Accordingly, Bkav has recommended that computer users install antivirus programs and avoid opening any attachments from unknown sources. If users have to open files, they should open them with Safe Run software from Bkav.
SGT