The virus, which has been dubbed 'Gpcode’, infiltrates a user’s computer via unpatched browsers. Once active it encodes most of the data on the computer, including .doc, .txt, .pdf, .xls, .jpg and .png files, with a 1024 bit key and then demands money from the user to obtain the decryption key.
The malware is a revision of a previous virus, thought to be from the same author, which appeared two years ago but only used a 660 bit key.
So far, Kaspersky and other security vendors have been successful in cracking the 660 bit key, but efforts to decode the 1024 bit key have proven unsuccessful.
Kaspersky has estimated that it would take around 15 million modern computers, running for about a year, to crack the 1024 bit encryption key.
In light of this, Kaspersky has launched a global initiative called Stop Gpcode and put out an international call for all cryptography experts, governmental research bodies, and other antivirus vendors to pitch in and crack the code.
Kaspersky has said it is prepared to provide any additional information at its disposal with experts wishing to participate in the Stop Gpcode initiative.
It has also set up a Stop Gpcode forum to help coordinate the activity of all participants involved.
Kaspersky sends SOS to crack 1024 bit encryption key
By Mitchell Bingemann on Jun 11, 2008 2:27PM