First Bitcoin Cash Ransomware Makes It Impossible to Decrypt Files

First Bitcoin Cash Ransomware Makes It Impossible to Decrypt Files

Ransomware extortionists have seemingly started using Bitcoin Cash (BCH) for ransom payments as well, according to a report published by Bleeping Computer. The first ransomware strain to use the cryptocurrency, dubbed Thanatos, makes it impossible for users to decrypt their files, even after paying.

Per Bleeping Computer, the ransomware was first discovered by cybersecurity researcher MalwareHunterTeam. After infecting a victim, Thanatos uses a new key for each file it encrypts, but doesn’t store the keys anywhere. As a result, it’s impossible for the ransomware’s developer to decrypt a victim’s files.

Those affected by Thanatos are advised not to pay the ransom. According to researchers, the only way to get rid of it is by brute forcing the encryption key for each file, meaning victims should contact cybersecurity firms for help.

Thanatos is notably the first ransomware strain to accept Bitcoin Cash for payments, along with Bitcoin and Ethereum. After a user is infected, a readme.txt file opens up, telling them to send the equivalent of $200 to a BTC, ETH, or BCH wallet. Bleeping Computer’s report reads:

At the end of the note, the extortionists try to coerce victims into paying by implying no one can help. It reads that files can only be decrypted by the ransomware’s authors, although researchers pointed out even they can’t do it.

The growing popularity of cryptocurrencies has been helping ransomware extortionists’ business. As covered by CCN, a Google report revealed that they netted $25 million in two years. The business is so popular that a Tor Proxy service was caught diverting some of their bitcoin payments.

Security researchers advise users to regularly backup their files in a secure and reliable way, to use proper security software, and to never open attachments when the sender is unknown. Furthermore, users should make sure their software is updated as older programs often contain security vulnerabilities.

Other security tips include using strong passwords, and never reusing the same password in any circumstance. As reported, even darknet Dream Market users were caught for reusing their passwords.

Featured image from Shutterstock.

04.03.2018 / 10:40 95
MyEtherWallet Co-Founder Rebrands Twitter Page, Launches Rival Venture MyEtherWallet Co-Founder Rebrands
Popular Ethereum wallet service MyEtherWallet (MEW) recently became the center of the cryptocurrency community’s latest controversy, as co-founder
Litecoin to Complement Bitcoin as Payments Currency: Founder Charlie Lee Litecoin to Complement Bitcoin as
Charlie Lee Cryptocurrency-fueled scams seem to keep Litecoin founder Charlie Lee up at night, based on a report in Business Insider. Lee, who is an
Venezuela’s Petro “May Help the Global Currency System”: Chinese Credit Rating Giant Venezuela’s Petro “May Help the Global
Dagong Global Credit Rating, one of China’s biggest credit rating agencies, recently published a report commenting on Venezuela’s oil-backed
Dark Web Users Ditch Bitcoin for Litecoin Due to Costly, Slow Transactions Dark Web Users Ditch Bitcoin for
Slow transaction times and high fees are causing dark web users to favor Litecoin and, to a lesser extent, Dash, over bitcoin. A new report by
Litecoin Price Posts Lonely Decline as LitePay Debit Card Launch Fails Litecoin Price Posts Lonely Decline as
The Litecoin price posted a lonely decline on Tuesday after LitePay’s much-anticipated debit card launch was scrubbed at the last minute and delayed
Louisiana Attorney General Probes Own IT Dept Over Bitcoin Mining Allegations Louisiana Attorney General Probes Own
The Louisiana Attorney General, Jeff Landry, has opened a criminal investigation into his own office’s information technology division, including its
Comments (0)
Add a comment
Comment on