NinjaLoc virus is a test ransomware that appears to be made by its creators. The current attack campaign uses infected software installers to spread itself. Our in-depth article shows how victims can remove the active infections and restore their computers.
NinjaLoc Virus – Distribution Ways
The NinjaLoc virus is a new ransomware threat which is being actively spread using a variety of different tactics. The captured samples are low in quantity which shows that ongoing campaign is a test release.
One of the reports indicate that the NinjaLoc virus is spread as a fixitup.exe file leading us to believe that the main method is the payload creation. The hackers are embedding the virus code into application installers of system utilities which are being spread using various tactics.
A main method is the use of phishing SPAM messages that appear as being sent by a legitimate company or service. They use familiar design elements and are disguised as password reset prompts, software updates or other messages that the user might regularly receive.
The criminals can also construct malicious download (Read more...)
*** This is a Security Bloggers Network syndicated blog from How to, Technology and PC Security Forum | SensorsTechForum.com authored by Martin Beltov. Read the original post at: https://sensorstechforum.com/remove-ninjaloc-virus-delete-active-infections-restore-data/