ransomware (cryptovirus, cryptotrojan or cryptoworm)

Part of the TechTarget Network of Enterprise IT Web Sites
HOME SEARCH BROWSE BY CATEGORY BROWSE BY ALPHABET FILE EXTENSION LIST CHEAT SHEETS WHITE PAPERS

Search our IT-specific encyclopedia for:
 
Browse alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #
All Categories Application Security

ransomware (cryptovirus, cryptotrojan or cryptoworm)

Ransomware is a type of malware used for data kidnapping, an exploit in which the attacker encrypts the victim's data and demands payment for the decryption key. A ransomware program can be installed from an e-mail attachment, an infected program, or a compromised or malicious Web site. Malware used for this purpose is sometimes called a cryptovirus, cryptotrojan or cryptoworm.

Ransomware is not new. A paper entitled "Cryptovirology: Extortion-Based Security Threats and Countermeasures," written by security experts at Columbia University and IBM, clearly outlined the concept back in 1996. In the past, though, data kidnappers targeted businesses rather than individuals. In March 2006, ransomware known as Crypzip or Zippo circulated to private users on the Internet. Recipients of the Trojan horse program also received an e-mail ransom note demanding $300, to be paid by electronic transfer, for the key required to unlock all their files.

A newer type of ransomware uses a Trojan to encrypt files on a victim's computer but doesn't send a ransom note. Instead, it counts on the victim looking on the Internet for information about malware that encrypts files. The data kidnapper makes their money by selling software on legitimate web sites that can be purchased to decrypt the files.

Most antivirus vendors have signatures that can block the known types of ransomware. To protect against future manifestations of data kidnapping -- and many other online crimes -- experts urge that users back up data regularly, practice cautious browsing and refrain from opening unexpected e-mail attachments.

See also: cyberextortion, DoS extortion

 

Learn more:

Ransomware: How to deal with advanced encryption algorithms
So, what should you do when you get that dreaded phone call from your CEO? Here are a few helpful tips

Has ransomware made a comeback?
Security expert Ed Skoudis explains why he thinks ransomware is not an effective attack vector. 

Last updated on: Mar 24, 2011

>  Enterprise Software related Research & News
>  White Papers for the Retail Industry

Are you a Know-IT-All?
What technology is solid-state lighting based on?
Answer

word of the day Sign up for the Word of the Day
twitter Follow us on Twitter

WORD OF THE DAY...
above the fold
LEARN MORE ABOUT...
Mobile Web design and testing
wear leveling
write amplification
write endurance
decision management
business process governance
Profile-Driven Storage
Resilient File System (ReFS)
Security, Trust and Assurance Registry (STAR)
Windows Server 8
community cloud
managed storage
facial recognition
Shared serial-attached SCSI (SAS)
open compute project
BIOS password
dynamic BPM (business process management)
social BPM (business process management)
in-circuit emulator (ICE)
above the fold
logic simulator
photometric stereo
dynamic case management (DCM)
raw device mapping (RDM)
WhatIs.com RSS Feeds
HOME SEARCH BROWSE BY CATEGORY BROWSE BY ALPHABET FILE EXTENSION LIST CHEAT SHEETS WHITE PAPERS
About Us   |   Contact Us   |   For Advertisers   |   For Business Partners   |   Reprints   |   RSS   |   Awards
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints




All Rights Reserved, Copyright 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts