Most Ransomware isnt as Complex as You Might Think

by Engin Kirda
Sept. 18, 2017 1 comment Black Hat belen_caty Encryption & Authentication

In this presentation, hear the findings of new academic research into ransomware in which we analyzed more than 1,300 samples captured in the wild from 2006 and 2014 from 15 malware families - including Calelk, Cryptolocker, CryptoWall, Gpcode, Filecoder, Kevtor, Reveton, Seftad, Urausy and Winlock. Our results indicate that (while ransomware authors have made some advancements in encryption, deletion and communication techniques over those eight years) the real impact on victims who don't pay is typically still both nondestructive and preventable. Even the very small set of truly destructive zero-day ransomware samples with sophisticated encryption capabilities we identified can be detected and stopped.

Steven Ulm 9 months, 1 week ago

Ransomware did A LOT of damage in 2016 and 2017. I also believe it is a little overrated but still... the media makes it more powerful than it really is.