Cryptolocker has hit a reported 157 Britons according to a latest report by UK’s National Fraud Intelligence Bureau (NFIB).
The NFIB said in a blog post that it has received 157 reports of CryptoLocker infection through its Action Fraud reporting site. The update follows after the National Crime Agency warned that the ransomware was targeting tens of millions of users across the UK through a massive spam campaign.
Cryptolocker disguises itself as an attachment in an email purported to be from a genuine source. If opened the ransomware encrypts local files on the user’s system using a locally stored AES key and a remotely held RSA-2048 key. Once the infection is successful and files have been encrypted, Cryptlocker serves a 72-hour countdown timer with a payment demand for 0.5 BTC in exchange for a decryption key.
“The NFIB is recommending that members of the public remain vigilant when opening emails, follow prevention advice and report any instances of Cryptolocker to Action Fraud”, noted the Action Fraud blog.
The fight against Cryptolocker is on with 138 C&C domains already identified and suspended – thanks to the efforts of MalwareMustDie, NPO team.