Ransomware virus are carried out by trojan program. According to …, a trojan is a type of malware that is often disguised as legitimate software. This malicious program allows cyber criminals to
1) Deleting data
2) Blocking data
3) Modifying data
4) Copying data
5) Disruption the performance of computer or computer network.
First ransomware virus
In 1989, according to the “”. The AIDS Trojan, also known as the PC Cyborg virus, was the first ever ransomware virus documented. The program was written by biologist Joseph Popp, who handed out 20,000 infected disk to the people who attended the World Health Organization’s Aid conference.
Figure 1
Rise in misleading programs
In 2005, rise of misleading applications began to appear. These application disguise themselves as fake spyware removal tool, such as SpySherriff, or performance enhancement tool such as …show more content…
May 2005 - Trojan.Gpcoder, custom-encryption techniques used were weak and easily overcome. Cyber criminals continued to refine.
Early 2006 -Trojan.Cryzip, copied data files into individual password protected archive files, and deleted original files. Password was embedded inside the code of the trojan itself, making it easily to retrieve the password.
Trojan.Archiveus like Cryzip used the same method but malware did not ask for cash payment but ask them to buy medication over the internet using certain online pharmacy URLs.
Fake Anti-Virus
2008 – 2009, cyber criminals switched to using fake anti-virus program. Program will perform mock scans, claiming to find large number of threats in the computer. User will then need to pay a fee of between US$40 – US$100 to fix the fake problems.
However, some victims chose to ignore the payment or removed the software entirely. This leads the cybercriminal to looked for some new better ways, to scam more victims.
Locker