Have you ever heard about Ransomware? This is indeed an interesting topic I have read in this
site which really frustrates me.
Let's talk about the how this
"Lilocked Ransomware is Targeting those websites and servers.
Believe it or not, there is something like new way of randsome bitcoin that is happening online.
How it works?
- They are posibbly using "exploits" to attact and enter the site's server.
- When a machine is infected, the ransomware will encrypt a file and then append the .lilocked extension to the file name. They will gonna put #README.lilocked folder that serves as a ransom note.
See
images below:
When you opened it, this is the ransom note;
Their website' will be presented with a page asking them to enter their key.
After they entered the private key, there is an instruction on how the victim will gonna send .01 bitcoin to their address.
That's how it works. Attackers apology at the end and promised to return the encrypted data in exchange of .01 bitcoin or approximately $100. Wow, a new way of scamming and blackmailing online nowadays.
Until now, unfortunately there is no known way to decrypt files encrypted by Lilu.
Hope this won't happen to anyone here especially those who have their own websites.
If you want a detailed information, you can way check it here.
https://www.bleepingcomputer.com/news/security/lilocked-ransomware-actively-targeting-servers-and-web-sites/
