A ransomware scam has been discovered that tricks victims into believing they have been caught with child exploitation material by the NSA's PRISM program.
The scam functioned similarly to other ransomware attacks in that it was hosted on compromised or malicious web sites or ad networks and locked down victim machines displaying a message that demanded payment of a ransom.
Victims of the ransomware are told that were under investigation for "illegal content downloading and distribution," specifically child pornography.
Researcher Kafeine studied the threat and said its purveyors were likely responsible for the Kovter ransomware which spread earlier this year.
The crooks' command-and-control server was based in Russia, Kafeine said.
iTnews Cloud Covered Breakfast Summit
Huntress _declassified Virtual Event
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
Melbourne Cloud & Datacenter Convention 2026
iTnews Executive Retreat - Data & AI Edition
_(1).jpg&h=140&w=231&c=1&s=0)
