• Cyber Security
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware File Recovery
    • Ransomware Types
  • Ransomware Services
    • Ransomware Removal
    • Ransomware File Recovery
  • News
  • Tutorials
  • Ransomware TV

How GandCrab has turned into a multi-million ransomware this year

November 8, 2018Simeon Georgiev

During its formative phase, the cryptovirological operatives were more focused on targeting individual users to rip them off for ransomware removal. For that matter, earlier cryptovirological families such as CryptoLocker and CryptoWall used to target personal devices for a small amount of ransom. However, they soon realized that targeting business organizations and public entities was a more lucrative business model. In the last two years or so, we have seen how business and public sector has been targeted by cryptovirological activity. If we particularly talk about this year, then GandCrab ransom family, first detected in January this year, emerges as the most money-spinning tool for cybercriminals. In the last 9-10 months, it has affected roughly 500,000 users all around the world.

What makes GandCrab effective?

GandCrab has become a great tool for cybercriminals to extort money because it has a unique feature of devising customized ransom notes. This means the operators can demand the extortion amount by taking into account the financial standing of the victim and the nature of the locked down data. Therefore, the reported ransom demand in cases of GandCrab attacks ranges from $600 to $700,000. It has also been reported that half of the victims have yielded to the demands of the operators for ransomware removal.

Keeping all the above-mentioned figures, stats and facts in mind, the experts have deduced that the developers and operators of GandCrab might have succeeded in making more than $300 million through ransom payments.

There is another interesting feature of GandCrab i.e. it first identifies the keyboard language of the targeted user before initiating the encryption activity and doesn’t infect the devices with Russian keyboards. This characteristic strongly suggests that Russian operators are behind the development of this cryptovirological strain. Professional ransomware removal can disinfect the systems affected by GandCrab. Meanwhile, backing up critical data is an essential preventive measure against any cryptovirological activity.

Simeon Georgiev
https://www.linkedin.com/in/simeon--georgiev/
I am a Cyber Security Enthusiast from Bulgaria. I like to write about malware and ransomware and global cyber attacks. You can reach me on Twitter @sgeorgiev1995 or Email: [email protected]
Previous post Dungeon Spider — The Face Behind Locky Ransomware Next post Cryptovirological discovery: GMPF ransomware

Related Articles

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

January 27, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Ransomware: 4 Types of the Latest Trend in Cybercrimes

February 1, 2018Simeon Georgiev
Ransomware: 4 Types of the Latest Trend in Cybercrimes

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

February 1, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Latest on Ransomware TV

https://vimeo.com/399908876?loop=0

Recent Posts

  • How to protect your organization against ransomware reinfections
  • AuKill Helps Ransomware Operators Disable EDR and Security Tools
  • AI-ransomware is a real threat, just not a realistic one yet
  • Rorschach is the new speed king in the ransomware space
  • The Role of Supply Chain Breaches in Ransomware Attacks

Stay Protected

Subscribe to our mailing list to get the latest cyber security and ransomware removal articles!

Thank you for subscribing.

Something went wrong.

Navigation

  • Cyber Security
    • Ransomware File Recovery
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware Types
  • News
  • Tutorials

Ransomware Attacks (Last 6M)

0

Connect & Protect

Facebook
Google+
LinkedIn
YouTube
Vimeo

More

  • BECOME A CONTRIBUTOR

MonsterCloud Reviews

© 2020 MonsterCloud.com. All Rights Reserved.