The Channel logo

News

By | John Leyden 21st July 2016 11:25

Ransomware gang: How can I extort you today?

Step 1. Improve customer service. Step 2.???? Step 3 PROFIT!!!

Three out of four ransomware criminal gangs are willing to negotiate the shakedown price. And all the operators of file encrypting ransomware scams will give victims more time to pay up.

So say security researchers at F-Secure, who investigated the "customer experience" of five active crypto-ransomware variants, beginning with the initial ransom screen all the way to interacting with the ransomware criminals behind each of those variants.

Ransomware gangs are usually willing to negotiate the price, averaging a 29 per cent discount on the initial demand.

The crooks might act tough and uncompromising but they also have to “establish a degree of trust with the victim and be ready to offer a certain level of service in order to realise the payment in the end," according to F-Secure.

As such, crypto-ransomware families often operate similar to legitimate businesses, with accessible web pages, helpful FAQs, "free trials" for file decryption, and even customer support channels staffed by responsive agents.

One group approached claimed to be hired by a corporation to hack another corporation. This claim is unproven and could be hacker braggadocio.

F-Secure’s report, Evaluating the Customer Journey of Crypto-Ransomware and the Paradox Behind It, can be found here (pdf).

A comic book-style infographic summarising the main findings of the study as well as tips on protecting against ransomware problems is here. ®

comment icon Read 9 comments on this article or post a comment alert Send corrections

Opinion

Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella
Stranded_ships

Chris Mellor

Thousands of layoffs announced as spinning rust enters its death spiral

Features

Locker room jocks photo via Shutterstock
Best locker-room strategy: Avoid emulating AWS directly
STRASBOURG, JUNE 29, 2016: The seat of the European Parliament. by Marco Aprile for shutterstock. EDITORIAL USE ONLY
Plan b, image via Shutterstock
EU workers, new markets: post-Brexit pressure on May & Co
Tough question, pic via Shutterstock