Sunday, March 19, 2017

Netiquette IQ Security Alert Captain 'Kirk' Ransomware




Buy the books at

 www.amazon.com/author/paulbabicki
====================================================








March 17, 2017 from scmagazine.com

Star Trek-themed Captain 'Kirk' ransomware with Spock decryptor spotted

Star Trek-themed Captain 'Kirk' ransomware with Spock decryptor spotted
A cybercriminal who obviously watches way too much television has gone where many have gone before and rolled out a new malware family called Kirk ransomware.


Kirk's creators did have a sense of humor when putting together their scheme. The malware, which was uncovered by Avast cyber researcher Jakub Kroustek, contains a short list of Star Trek and SciFi references that any TV junkie/hacker would admire. In addition to naming the code after the captain of the USS Enterprise, the decryptor that is supplied once payment is made is dubbed Spock, according to Bleeping Computer.
In addition, there is a reference to a Low Orbital Ion Canon, which not only satisfies the geeks out there, but is also a real type of network stress tool.

There has not yet been any reported incidences of Kirk, which is written in Python, in the wild, but on (mixed metaphor alert) the dark side of the situation the malware has the potential to be dangerous as no decryptor is available, except for the one offered by the criminals. Webroot reverse engineer Eric Klonowski said his firm classified Kirk as malicious on March 7.

Bleeping Computer founder Lawrence Abrams also noted that the cybercriminals are using the Monero digital currency instead of the more popular Bitcoin, which he believes is a first for this type of attack.

Since the Kirk ransomware has not been officially spotted in the wild nor have any victims come forward, Abrams told SC Media, its distribution method is still unknown. However, once in a system it cloaks itself as a Low Orbital Ion Canon stress tool, and uses a fake Low Orbital Ion Canon alert to confuse the victim. The ransomware then executes creating an AES password, which in turn, is encrypted by an embedded RSA-4096 encryption key and stored in the system for later use.

"The Kirk malware demonstrates that ransomware crypto can be effectively implemented in a few lines of code with relatively few weaknesses," Klonowski said, adding that "New flavors of ransomware are nothing new, we've seen ransomware that brands itself as PAC-MAN, Breaking Bad, etc. Generally, these don't proliferate and aren't very serious in the grand scheme of things."
===================================

Good Netiquette And A Green Internet To All!  =====================================================================Tabula Rosa Systems - Tabula Rosa Systems (TRS) is dedicated to providing Best of Breed Technology and Best of Class Professional Services to our Clients. We have a portfolio of products which we have selected for their capabilities, viability and value. TRS provides product, design, implementation and support services on all products that we represent. Additionally, TRS provides expertise in Network Analysis, eBusiness Application Profiling, ePolicy and eBusiness Troubleshooting

We can be contacted at:

sales@tabularosa.net  or 609 818 1802.
 ===============================================================
In addition to this blog, Netiquette IQ has a website with great assets which are being added to on a regular basis. I have authored the premiere book on Netiquette, “Netiquette IQ - A Comprehensive Guide to Improve, Enhance and Add Power to Your Email". My new book, “You’re Hired! Super Charge Your Email Skills in 60 Minutes. . . And Get That Job!” has just been published and will be followed by a trilogy of books on Netiquette for young people. You can view my profile, reviews of the book and content excerpts at:

 www.amazon.com/author/paulbabicki

Anyone who would like to review the book and have it posted on my blog or website, please contact me paul@netiquetteiq.com.

In addition to this blog, I maintain a radio show on BlogtalkRadio  and an online newsletter via paper.li.I have established Netiquette discussion groups with Linkedin and  Yahoo I am also a member of the International Business Etiquette and Protocol Group and Minding Manners among others. I regularly consult for the Gerson Lehrman Group, a worldwide network of subject matter experts and I have been contributing to the blogs Everything Email and emailmonday . My work has appeared in numerous publications and I have presented to groups such as The Breakfast Club of NJ and  PSG of Mercer County, NJ.


Additionally, I am the president of Tabula Rosa Systems, a “best of breed” reseller of products for communications, email, network management software, security products and professional services.  Also, I am the president of Netiquette IQ. We are currently developing an email IQ rating system, Netiquette IQ, which promotes the fundamentals outlined in my book.

Over the past twenty-five years, I have enjoyed a dynamic and successful career and have attained an extensive background in IT and electronic communications by selling and marketing within the information technology market.