Criminals are making $5 million a year using ransomware, according to a report

Ransomware is a special type of malware that locks, or claims to lock, your files and folders; then it asks you to pay a certain amount of money before you are given access back to your data. If you don’t pay, you don’t get access to your data (unless you had a pre-ransomware backup). Ransomware has been around for a long time but it appears that the technique is finally paying dividends to criminals — 5 million of them.

As part of their investigation for the Ransomware: A Growing Menace study, Symantec was able to gain access to the command-and-control center of one widespread ransomware scam. Over the period of one month, Symantec tracked 68,000 unique IP addresses connecting to the server (presumably 68,000 victims). In a particular day, 5,700 unique IP addresses connected to the server (presumably 5,700 victims) of which 168 paid the $200 fee asked by the ransom. Symantec extrapolated that to mean the people who ran the ransomware scam made roughly $394,400 in a month:

Symantec was able to track another cyber crime gang and found 500,000 unique IP addresses connecting to that particular ransomware server over the period of 18 days.

This data has lead Symantec to proclaim “a conservative estimate” that “over $5 million dollars a year” is being earned by criminals using ransomware. Symantec further notes that “he real number is, however, likely much higher” than $5 million a year.

To add salt to the wound, Symantec mentions something that most security experts already know about ransomware — paying doesn’t always mean you will get your files back:

A lot of individuals do pay up, either because they believe the messages or because they realize it is a scam but still want to restore access to their computer. Unfortunately, even if a person does pay up, the fraudsters often do not restore functionality. The only reliable way to restore functionality is to remove the malware.

$5 million. A year. I should get into this business.

[via ArsTechnica, Symantec]

Share this post

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

5 comments

  1. clockmendergb

    @Frank:
    Frank
    I realised you were joshing .
    I seem to have made you into triplets
    sorry for that
    I was thinking of my mother in law when I said some will need a tutorial to get rid of this stuff.
    As I have not seen any yet I was hoping someone would clarify if the Antivirus software is picking it up.
    I am not a pro techi just an old boy who has uses a lot of computers.
    My knowledge is great in some areas but downright abysmal in others..

    Do not think bad of me my heart is still in there somewhere.

  2. clockmendergb

    @Frank: @Frank: @Frank:
    Frank I think a lot of people will need a tutorial on how to remove this stuff.
    I must be lucky I have not seen any of this yet.
    I presume you can still run anti virus and spyware scans in order to get it off .
    If not Then what happens next?

  3. Frank

    Dear Ashraf,

    could you please elaborate on the HowTo or provide a step-by-step tutorial?
    It seems a rather interesting job option to me and as I am not greedy I promise to stop afer the 1st million.

    Yours, Frank