Security News Torrentlocker Ransomware Spreading in Denmark via Deceptive Emails

[Andra Zaharia]

With all the frenzy around the Google Docs attack, I wouldn't be surprised if cyber criminals will try to replicate it on other file sharing services as well.

For the moment, the attackers behind Torrentlocker seem to keep replicating on what they know to be effective: phishing emails that pack enough social engineering elements to trick victims into clicking.

The details and detection rates (spoiler alert: low) are here: https://heimdalsecurity.com/blog/torrentlocker-ransomware-deceptive-campaign-denmark/

If you have Danish friends or friends who live in Northern Europe, they may find this helpful.

 

[BugCode]

Yes i have, thank you for share Andra

 

[Winter Soldier]

Thanks for sharing

Yes the detection ratio is low and considering the Javascript extension, I fear many people might start the sample because they can be "trained" to recognize and avoid .exe extension, but not all people are familiar with .js.

 

[Game Of Thrones]

in this kind of attacks the sophistication of security products shows itself, products with good cloud technology and concentrating on real malwares in the wild not just samples show their strengths here