American security company LURHQ has discovered a new program capable of encrypting all files on a victim’s computer. It leaves behind a message demanding a ransom of $300 to restore the data safely.
This Trojan, named Cryzip, is classified as “ransomware” due to its use of dangerous code to control files and subsequently sell the decryption key for a fee.
Cryzip informs victims that they “caught” it from a pornographic website and warns not to contact the police. “Don’t try to recover the documents because they simply no longer exist on the hard drive. If you truly care about this data, pay $300 through the network,” Cryzip states.
Currently, denial-of-service attacks, using systems infected with viruses, are the most common extortion method on the Internet. In contrast, Cryzip operates on a much smaller and narrower scale. In May 2005, Websense, a US company, also discovered a similar Trojan.
“Users shouldn’t be overly concerned about Cryzip. However, two incidents within the past ten months indicate that virus authors are steering dangerous software in a new direction,” LURHQ emphasized.
In a recent announcement, security firm Symantec also discussed hackers spreading viruses and quietly stealing data for their own benefit without causing significant damage to users’ systems.
