Locky Ransomware and Xafecopy (Download PDF)


Download PDF of This Page (Size: 151.29 K)

The Indian Computer Emergency Response Team (CERT-In) issued alert Locky ransomware that can lock computers and demand ransom for unlocking them. Advanced malware uses cryptoviral extortion encrypting victim’s files, making them inaccessible.

Image of Average Monthly Mbps of Attacks

Image of Average Monthly Mbps of Attacks

Image of Average Monthly Mbps of Attacks

What is Ransomware?

  • Ransomware is malicious software from cryptovirology threating to publish the victim’s data or perpetually block access to computer system or data unless a ransom is paid.

  • Ransomware typically carried out using a Trojan disguised as a legitimate file downloaded or opened by the user

  • However, one dangerous example- “WannaCry worm”, traveled automatically between computers without user interaction

  • The Locky Ransomware third major ransomware attack after Wannacry and Petya which crippled thousands of computers

  • India was third worst affected country in list of over 100 countries hit by Wannacry in May 2017

Locky Ransomware

  • Circulated through spam campaign (spam emails) with common subject lines first surfaced in 2016

  • Targets computers by locking them

  • Demands ransom for restoring access

  • Ransom demanded in Bitcoin payment to unlock the files

Xafecopy Malware

  • Xafecopy Trojan steals money from mobile phone users

  • Penetration rate reveals 40 per cent of the malware’s targets in India

  • Installs along with other useful apps and then loads malicious code onto the device

  • Xafecopy clicks on web pages with Wireless Application Protocol (WAP) billing - a form of mobile payment requiring no credit or debit card information but charged directly through the user’s bill

  • Automatically disables the wireless connection forcing to use the Mobile network.

Best Practices for Phone

  • Prohibit the installation of apps from unknown sources.

  • Install mobile security anti-virus.

  • Disable WAP billing from the backend

About CERT-In

  • Nodal agency for information technology security under Department of Information Technology, Ministry of Electronics and IT

  • Established in 2004 to protect Indian cyberspace and software infrastructure against malware.

  • Responds to computer security incidents

  • Reports vulnerabilities and promotes effective IT security practices

  • Issue guidelines, vulnerability notes, advisories, and whitepapers regarding best practices in information security

- Published/Last Modified on: September 17, 2017


Monthy-updated, fully-solved, large current affairs-2019 question bank(more than 2000 problems): Quickly cover most-important current-affairs questions with pointwise explanations especially designed for IAS, NTA-NET, Bank-PO and other competetive exams.