New: TeslaCrypt Ransomware

TeslaCrypt is a file-encrypting ransomware program that was first released toward the end of February 2015. The ransomware targets all versions of Windows including Windows XP, Windows Vista, Windows 7, and Windows 8.

According to Wikipedia.org, "Although resembling CryptoLocker in form and function, TeslaCrypt shares no code with CryptoLocker and is developed independently."

When first infected with TeslaCrypt, it scans your computer for data files and encrypts them using AES encryption rendering the files inaccessible to the victim. Once the infection has encrypted the data files on all computer drives, it will display an application that contains instructions on how to retrieve the files, including a demand for ransom.

These instructions include a link to a decryption service site, which informs the victim of tthe number of files encrypted, ransom amount, and instructions on how to make  payment. Ransom usually starts around $500 USD and is payable via Bitcoins.

ThreatSTOP customers are protected from TeslaCrypt.

Share this: