It is being reported by CCN that a new crypto based extortion scheme is floating around, but this one has a twist: It tricks users into installing the ransomware onto their own system. At which point a Bitcoin demand is made, as with most ransomware.
The attack begins like a lot of extortion schemes floating around, the user gets an email claiming the attacker has compromising video or other proof of embarassing or illegal online activity. It offers a link to the proof, which is in reality a link to the ransomware, named GandCrab.
For the first time this week, we observed a sextortion campaign that also includes a link to #ransomware with #SocialEngineering designed to extort money from recipients. https://t.co/Fol821L2wU pic.twitter.com/PGo9FZfu2p— Proofpoint (@proofpoint) December 7, 2018
The attackers hope that in their panick, users will click the link, thereby infecting themselves. At this point the system becomes locked and a payment of Bitcoin or Dash is demanded. Incidentally, this is the first known ransomware to accept Dash.
The majority of victims seem to be from the US, the UK and Scandinavia. It is estimated that the attack has generated over $600,000 in the last two months since its discovery.
Will this lead to even more sophisticated ransomware attacks? Be sure to check back with Chepicap for all updates!