NEWS - April 03, 2013
by Carol~ - 4/3/13 7:39 AM
Ransomware uses victims' browser histories to win credibility
"Visited websites are listed as source of illegal material in order to make the bogus police messages more believable"
The authors of police-themed ransomware have started using the browsing histories from infected computers in order to make their scams more believable, according to an independent malware researcher.
Ransomware is a class of malicious applications designed to extort money from users by disabling important system functionality or by encrypting their personal files. A particular variation of this type of threat displays messages masquerading as notifications from law enforcement agencies.
The language of the messages and the agency names used in them change depending on the location of the victims, but in almost all cases the victims are told that their computers have been locked because they accessed or downloaded illegal content. In order to regain access to their computers, users are asked to pay a fine.
A new ransomware variant that employs this trick was spotted over the weekend by an independent malware analyst known online as Kafeine. Dubbed Kovter, this version stands out because it uses information gathered from the victim's browser history in order to make the scam message more credible, Kafeine said Friday in a blog post.
Continued : http://news.techworld.com/security/3438007/ransomware-uses-victims-browser-histories-win-credibility/
Also: Ransomware uses browser history to persuade users to pay up