CryptXXX providing free keys for .Crypz and .Cryp1 Versions

Free keys are only being offered for certain versions of CryptXXX, namely the variants that add the .Crypz and .Cryp1 extensions to encrypted files. All other versions are not receiving the decryption key for free. If you are infected with these variants of CryptXXX, you should log in and get your free key before they fix it. [...]
Continue reading »

July’s Patch Tuesday resolves 11 Security Vulnerabilities

Today is July's Microsoft Patch Tuesday and we have a slew of updates being released by Microsoft. Included in this update are 11 security updates with 6 of them being labeled as critical because they allow remote code execution. Remote code execution allows attackers to potentially execute commands on the vulnerable system. [...]
Continue reading »

CTB-Faker Ransomware does a poor job imitating CTB-Locker

A new ransomware called CTB-Faker was discovered that pretends to be the CTB-Locker ransomware. It is a poor imitator, though, as instead of encrypting a victim's files, it will move them instead into a password protected ZIP archive.  CTB-Faker will then demand a ransom of  $50 USD in bitcoins. [...]
Continue reading »

New CryptXXX changes name to Microsoft Decryptor

A new version of the CryptXXX Ransomware was discovered by Brad Duncan that includes changes to encrypted file names, uses modified ransom note names, a new template, and a new TOR payment site description. With this release, the ransom notes are now named README.html, README.bmp, and README.txt. [...]
Continue reading »