- Apr 21, 2016
- 4,371
In the past few days, two large spam waves have crashed into Denmark, carrying TorrentLocker ransomware, the famous malware.
It seems that this time around the ransomware was distributed with the help of Microsoft Word documents embedded with malicious macros, say the researchers from Heimdal Security. Users were tricked into downloading these malicious files which caused them quite a lot of troubles.
It seems that if the victim enabled the macro by clicking on the "Enable Editing" button, a PowerShell code was executed, which, in turn, downloaded ransomware from the TorrentLocker family.
Of course, the default option simply allows users to view the file. Tapping that aforementioned button, however, tips the first domino piece which eventually leads to your entire computer being locked up.
This new TorrentLocker variant comes with a few new features, un... (read more)
Read more: New TorrentLocker Ransomware Variant Targets Denmark
