A new bit of ransomware is now attacking Linux-based machines, specifically the folders associated with serving web pages. Called Linux.Encoder.1 the ransomware will encrypt your MySQL, Apache, and home/root folders. The system then asks for a single bitcoin to decrypt the files.
From Dr.Web Antivirus:
Once launched with administrator privileges, the Trojan dubbed Linux.Encoder.1 downloads files containing cybercriminals’ demands and a file with the path to a public RSA key. After that, the malicious program starts as a daemon and deletes the original files. Subsequently, the RSA key is used to store AES keys which will be employed by the Trojan to encrypt files on the infected computer.
(Score: 2) by NotSanguine on Sunday November 08 2015, @11:18AM
I saw this amusing bit in TFA:
Since the data is encrypted with an RSA 2048 bit key, I imagine that researchers will be working on that "decryption system" for quite some time.
No, no, you're not thinking; you're just being logical. --Niels Bohr
(Score: 2) by maxwell demon on Sunday November 08 2015, @02:07PM
Which just means, you should keep making backups of all data for basically forever (or until you no longer need that data). Which certainly is a good advice.
The Tao of math: The numbers you can count are not the real numbers.