SecurityRatty: tag: gpcode

Identifying the Gpcode Ransomware Author

2008-09-30 17:23:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...Gpcode targeted cryptoviral extortion attacks The individual is believed to be a Russian national, and has been in contact with at least one anti-malware company, Kaspersky Lab, in an attempt to sell a tool that could be used to decrypt victims' files. Kaspersky Lab set about locating the man by resolving the proxied IP addresses used to...

Tags: gpcode, gpcode campaigns, recent gpcode, gpcode ransomware, gpcode campaigners, gpcode authors, kaspersky lab, virtual currency accounts, liberty reserve accounts

Decrypting and Restoring GPcode Encrypted Files

2008-07-01 08:26:39 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...GPcode ransomware, is prompting Kaspersky Labs to invest in a more pragmatic solutions to the problem , with a new version of the StopGpcode tool released last week. More info It turns out that if a user has files that are encrypted by Gpcode and versions of those same files that are unencrypted, then the pairs of files (the encrypted and...

Tags: files, gpcode, original files, gpcode virus, gpcode ransomware, file, secure file deletion, computer virus, key

Who's Behind the GPcode Ransomware?

2008-06-10 09:44:53 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...GPcode ransomware? It's Russian teens with pimples, using E-gold and Liberty Reserve accounts, running three different GPcode campaigns, two of which request either $100 or $200 for the decryptor, and communicating from Chinese IPs. Here are all the details regarding the emails they use, the email responses they sent back, the currency...

Tags: account, e-gold account, e-gold, file, sample response email, txt file, virtual currency accounts, liberty reserve accounts, liberty reserve

How to salvage data lost to Gpcode.ak encryptor virus

2008-06-16 00:00:00 by Ellen Messmer in Network World on Security

Kaspersky Lab says it has identified a method for salvaging files maliciously encrypted by the Gpcode.ak virus

Tags: gpcode, kaspersky lab, virus, files maliciously, method

Summarizing July's Threatscape

2008-08-01 16:08:24 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...GPcode Encrypted Files The GPcode authors read the news too, and are catching up with the major weaknesses pointed out in their previous release in order to come with a virtually unbreakable algorithm. And since more evidence of who's behind the GPcode ransomware was gathered, vendors and independent researchers realized that the latest...

Tags: malware, profitable malware operations, malware authors, malware tools, malware coder, malware kit, malware infection, neosploit malware kit, spam

Kaspersky Labs Trying to Crack 1024-bit RSA

2008-06-12 12:30:41 by schneier in Schneier on Security

...Gpcode Virus. From their website : We estimate it would take around 15 million modern computers, running for about a year, to crack such a key What are they smoking at Kaspersky? We've never factored a 1024-bit number -- at least, not outside any secret government agency -- and it's likely to require a lot more than 15 million computer years...

Tags: rsa, 1024-bit, kaspersky, 1024-bit rsa key, key, crack, kaspersky lab, mathematical, million modern computers

Summarizing June's Threatscape

2008-07-01 07:05:01 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...GPcode, a remotely exploitable flaw in the Zeus crimeware kit allowing both, researchers and malicious parties to assess the severity of a particular banker malware campaign, the increasing use of malicious doorways next to ICANN and IANA's DNS hijacking, all speak for themselves and how diverse the threats and, of course, the abilities to...

Tags: site, fake youtube site, web site defacements, malware, malware hosts, web site defacer, sites, vulnerable sites, malicious

New crypto virus a looming threat

2008-06-05 00:00:00 by Ellen Messmer in Network World on Security

A new encryptor virus dubbed Gpcode.ak has surfaced, posing a threat because it attacks computer files by encrypting them so that the victims can't get to their data

Tags: attacks computer files, threat, encryptor virus, victims, gpcode, data

Researchers urge ransomware victims to try file-recovery app

2008-06-16 13:00:00 by Editor in Computerworld Security News

Moscow-based Kaspersky Lab is telling ransomeware victims of Gpcode.ak how to recover data thought lost to the extortionists

Tags: kaspersky lab, recover data, ransomeware victims, extortionists, gpcode, lost

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo