• Cyber Security
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware File Recovery
    • Ransomware Types
  • Ransomware Services
    • Ransomware Removal
    • Ransomware File Recovery
  • News
  • Tutorials
  • Ransomware TV

Cryptovirological Discovery – Cossy Ransomware

January 6, 2019Simeon Georgiev

Ransomware developers are untiringly working to inflict users around the world with new cryptovirological strains. For that matter, cybersecurity teams in every region proactively look out for new variants to devise ransomware removal solutions. In the latest cryptovirological discovery, a team of malware hunters has come across a new ransomware strain that goes with the name Cossy ransomware.

The preliminary inspection of the ransomware reveals that it is devised to target Russian users since the ransom note appears after the encryption is written in Russian. Moreover, it has also been found out that Cossy operators are using RSA 2048 encryption to lock down the files on the targeted computer. RSA 2048 is considered one of the most complex encryption matrixes out there. This means that the professional ransomware removal for Cossy ransomware will be quite a cumbersome task.

A Complex Game of Extensions

Every ransomware appends encrypted files with a particular extension to indicate that they are inaccessible. Cossy ransomware also appends unique extensions to the encrypted files. However, it has an inexplicable rule for that:

  • The non-executable files are appended with the extension ‘link. Protected by RSA-2048’
  • The executable files are appended with the extension ‘Protected by RSA-2048’

Security experts are still trying to find out the reason why Cossy operators use two different extensions for the encrypted files.

It is also worth mentioning that Cossy operators offer free decryption of five files up to 5 MBs to proof that they got the complete ransomware removal solution. Moreover, they ask for 50 rubles (Russian currency) in Bitcoins to provide the decryption key.

Security experts and law enforcement entities always advise against the payment of ransom. The better way to deal with any cryptovirological attack is to rely on professional ransomware removal expertise instead of resorting to an extortion payment.

Simeon Georgiev
https://www.linkedin.com/in/simeon--georgiev/
I am a Cyber Security Enthusiast from Bulgaria. I like to write about malware and ransomware and global cyber attacks. You can reach me on Twitter @sgeorgiev1995 or Email: [email protected]
Previous post North Korean Ransomware Operators Targeting the US and Europe Next post Is a New Ransomware Wave in the Offing?

Related Articles

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

January 27, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Ransomware: 4 Types of the Latest Trend in Cybercrimes

February 1, 2018Simeon Georgiev
Ransomware: 4 Types of the Latest Trend in Cybercrimes

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

February 1, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Latest on Ransomware TV

https://vimeo.com/399908876?loop=0

Recent Posts

  • How to protect your organization against ransomware reinfections
  • AuKill Helps Ransomware Operators Disable EDR and Security Tools
  • AI-ransomware is a real threat, just not a realistic one yet
  • Rorschach is the new speed king in the ransomware space
  • The Role of Supply Chain Breaches in Ransomware Attacks

Stay Protected

Subscribe to our mailing list to get the latest cyber security and ransomware removal articles!

Thank you for subscribing.

Something went wrong.

Navigation

  • Cyber Security
    • Ransomware File Recovery
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware Types
  • News
  • Tutorials

Ransomware Attacks (Last 6M)

0

Connect & Protect

Facebook
Google+
LinkedIn
YouTube
Vimeo

More

  • BECOME A CONTRIBUTOR

MonsterCloud Reviews

© 2020 MonsterCloud.com. All Rights Reserved.