Author Archives: Max Lehmann - Page 27

Hacker who cracked your email and device Scam shows a warning message claiming hackers have intercepted information revealing the victim’s “dark secret life.” In exchange for them keeping this information to themselves and not sending it to the victim’s friends or family, the scammers demand to be paid in Bitcoins. Knowing this is just a scam, and in reality, the hackers most likely do not have anything compromising to reveal about you, we would recommend against paying the ransom. If you continue reading the article, you will find more useful details about Hacker who cracked your email and device Scam. As well as our instructions on what to do if you come across this warning message; you should find them at the end of this page. Read more »

Your operating system can be heavily impacted by the entrance of Minotaur Ransomware, a malicious file-encryptor that uses a complex encryption algorithm to render files unreadable. This is not done just to mess with users. Files are encrypted to force victims to pay a huge ransom payment in return for a decryption key that, allegedly, is the only thing that can restore files. Although that is likely to be the truth, Anti-Spyware-101.com researchers warn that those who pay the ransom are unlikely to get the decryptor. Cyber criminals behind this malicious ransomware are not obligated to do it. Unfortunately, no one has tracked these criminals down and stopped their attacks yet, which is why it is the responsibility of every Windows users to secure their operating systems and personal files against the infection. In this report, we discuss how to secure the system to prevent malware from attacking in the future, as well as how to delete Minotaur Ransomware. As for the files, we do not have a solution for you, and you have to be very cautious about sources that claim otherwise. You can recover files only if they are backed up. Read more »

If DarkKomet invades the operating system, it can record incredible amounts of highly sensitive data. The infection can record passwords, monitor the websites you visit, and even spy on you via webcam and microphone. There are many different variants of this malware because its malicious code was available for free to anyone interested at darkcomet-rat.com. This website is still alive, but if you visit it, you are informed that the “project” is no longer supported. In fact, it has been that way since 2012. The program – which is identified as a remote access tool (RAT) – was created in 2008, so it has been around for a solid 10 years now. Has it caused problems in that timeframe? Has it been used in a malicious manner? Of course, it has. In fact, it is one of the most vicious RATs out there, which is why it is so important to discuss its activity, distribution, and removal. Unfortunately, it is not easy to delete DarkKomet; at least, not manually. Nonetheless, your virtual security could depend on your success. Read more »

GarrantyDecrypt Ransomware is the latest file-encrypting malware to come to the attention of our malware researchers. It attacks operating systems in a covert manner, and most victims do not realize that it exists until all files are encrypted. The infection encrypts files because that is the only thing that its creator can hold over their victims’ heads. If files are important, victims might be more willing to pay a ransom in return for a decryptor. Of course, we only assume that a decryptor is on the table because the ransom note delivered by this infection is very vague. It simply asks to contact cyber criminals. Should you do it? Should you follow their instructions? Should you pay the ransom if it is requested? Should you try to decrypt your files or should you just forget about them now? These and many other questions are answered in this report. In the end, we also discuss the removal of GarrantyDecrypt Ransomware. Our Anti-Spyware-101.com research team has analyzed the threat, and we can offer a few tips that will, hopefully, help you delete it with ease. Read more »

GusCrypter Ransomware is a malicious computer infection that will not allow you to operate your comptue properly. This program will encrypt your files and it will tell you that you must pay the ransom fee to get them back.

Needless to say, paying the ransom fee should be the last thing on your mind because no one can guarantee that wiring the money to these criminals would restore your files in the first place. Your best bet at the moment would be removing GusCrypter Ransomware from your system, and then looking for methods to restore your files using other means. Read more »

Do you know what kind of malware might persist even if the infected operating system is reinstalled and the hard disk is replaced? It is UEFI (Unified Extensible Firmware Interface) rootkits. In the past, these rootkits were detected only in internal labs controlled by malware researchers, but LoJax has changed the history. It is the first UEFI rootkit to have been found in the wild. Intel created UEFI to replace BIOS (Basic Input/Output System), and all chipsets should use it by 2020. Unfortunately, that means that anyone could become the target of this malware. The rootkit was found to communicate with C&C servers that belong to Sednit, a well-known cyber-espionage group that is also known by other names, including Fancy Bear, PT28, Sofacy, and Strontium. This group has been active since 2004, and it is known for attacking government-level agencies and organizations. Read more »