New Delhi: The government on Saturday issued an alert on the spread of new malware ‘Locky Ransomware’ that can lock computers and demand ransom for unlocking them.
“Alert regarding spam spreading Locky Ransomware issued today by @IndianCERT…,” Electronics and IT Additional Secretary Ajay Kumar tweeted.
Ransomware is a malicious software and the Locky Ransomware is learnt to be demanding a ransom of half Bitcoin, which at present rate is equivalent to over Rs 1.5 lakh. The alert, issued on Cyber Swachhta Kendra, said it has been reported that a new wave of spam emails is circulating with common subject lines to spread variants of Locky Ransomware.
“Reports indicate that over 23 million messages have been sent in this campaign. The
messages contain common subjects like ‘please print’, ‘documents’, ‘photo’, ‘Images’, ‘scans’ and ‘pictures’. However, the subject texts may change in targeted spear phishing campaigns,” the alert, which described the severity of the ransomware as “high”, said.
The system infected by Locky Ransomware is getting locked or encrypted with random numbers with “extension [dot] lukitus or [dot] diablo6”, the alert stated. The instructions contain an installation of “a TOR browser and visiting (dot) onion sites and demanding the ransom of .5 Bitcoins”, it added.
To target users, spams showing links to fake Dropbox websites are being used to spread Locky variants. “Users are advised to exercise caution while opening emails and organisations are advised to deploy anti-spam solutions and update spam block lists,” the alert stated.
May saw a series of cyber attacks involving ransomware WannaCry. “Among more than 100 countries that were hit by WannaCry (an advanced ransomware attack), India was the third-worst affected,” an Assocham PWC report said.