Ransoc – An unusual ransomware that threatens to expose your personal information

A ransomware is something that encrypts the files in a system and the user has to pay money in exchange for a key that can decrypt the data. The payment has to be made in Bitcoins. Ransoc is different in the way it works and the medium it uses for the payment.

How does Ransoc work?
Ransoc infects the computer and steals the user’s personal information from your Skype and social media profiles. It damages windows PC by adding or deleting key files. A customized ransom note is displayed that has their social media details including their profile picture.

Ransoc

The note threatens with a fake legal proceeding. It also states that if the money is not paid, the sensitive information will be made public. The virus can hide deeply so that you can’t locate its files. It has become a common issue among users these days.

Now, two important points to note here:

  1. Ransoc, is not like other ransomware as it does not encrypt any files on the infected computer.
  2. The virus displays the ransome note only when the stolen information has some child pornography or illegally downloaded Torrent media files.

This means that the makers of this ransomware are targeting users who fear legal complications and damage to reputation and not their data.

Almost all the makers of ransomware use Bitcoin to avoid law enforcements. However, in case of Ransoc, the payment is demanded through credit card which is very unusual in case of Ransoc so far.

How your antivirus software helps protect against this?

You no more have to worry about these ransomwares if you have a good antivirus software installed. Products like Quick Heal, Kaspersky,Norton etc offer you the best possible solutions and they have updated their malware databases already to tackle it. E.g Quick Heal’s Virus Protection identifies ransomware as “Ransomware.TorLocker.PB5.” It further stops it from making any changes or performing any activity on your system.

Will websites be affected by this?

Yes, it is pretty much possible. Poorly developed websites accepting payments using popular payment gateways may be affected if they not secured with SSL. Even in those conditions user data will be exposed and eventually affect the credibility of the website.

According to Swapnil Bains, from Envigo Digital(@envigo) “Every application, regardless of its platform, is susceptible to cyber-attacks, even if it has been built using the best security and defensive coding practices. “ Read more about application security testing here.

So, it becomes important to build defences first than fix blunders latter.

He is Founder and Editor-in-Chief of Soft2share.com He is a 24 year guy from Dehradun, India and writes about Blogging, Technology, Mobiles, Gadgets, Softwares etc. For any feedback and queries, mail us to : 3dartistrawat@gmail.com