Friday, 20 March 2009

Antivirus2009 Holds Victim's Documents for Ransom

Source: Security Fix

The fake anti-virus program Antivirus2009 is now using its deceptive error messages to frighten users into downloading a program called FileFixerPro, under the pretext that certain files in the "My Documents" folder are corrupt. Antivirus2009 actually encrypts the files in question, and FileFixerPro will decrypt them only after a $50 fee is paid. File encryption has been used in the past, attracting the name "ransomware", but this is perhaps the first time that the technique has been used stealthily in conjunction with "scareware" like Antivirus2009, as opposed to blatant blackmail.

No comments: