CTB-Locker ransomware encrypts WordPress sites2016-03-01 03:08 by Daniela
Tags: CTB-Locker, ransomware
A new ransomware has been in the wild. Known as CTB-Locker or Critroni, it is a PHP program that targets web servers and particularly WordPress sites.
Once the ransomware is installed on a Web server, it encrypts website's content, and demands a 0.4 bitcoin ($425) ransom for access to the decryption key. The encrypted website displays the message:
"Your scripts, documents, photos, databases and other important files have been encrypted with strongest encryption algorithm AES-256 and unique key, generated for this site."
Victims can decrypt two separately-encrypted files for free as a way attackers to demonstrate the legitimacy of the ransom demand. However, in order to get all their files back, victims must pay.
It is supposed that the ransomware has infected hundreds of websites so far.
Read more -here-