Ransomware: New CryptXXX variant defeats Kaspersky decryption tool

The latest version of CryptXXX prevents Kaspersky’s tool from working.

By Steve Ragan

Researchers at Proofpoint, who first discovered CryptXXX a few weeks ago, have detected a new variant running in the wild on Tuesday, which defeats the previously released decryption tool offered by Kaspersky.

In addition to encrypting files on the victim’s computer and network shares, the CryptXXX family of Ransomware also acts like a data stealing Trojan, hijacking saved login credentials stored in the browser, email client, and IM application. If the victim has a Bitcoin wallet, CryptXXX will steal those too, and then immediately demand $500 Bitcoin to reverse the encryption.

To read the entire article, please click here.

Source: http://www.csoonline.com/