Bart ransomware shows it can be effective without sophisticated encryption

A new ransomware program making the rounds uses a simple, yet effective technique to make user files inaccessible: locking them in password-protected ZIP archives.

The new threat is called Bart and shares some similarities — in the ransom note in particular — with Locky, a much more widespread ransomware program. It is distributed through spam emails that masquerade as photos.

The emails have ZIP attachments that contain JavaScript files. These files can be run directly on Windows without the need of additional software and are an increasingly common way to distribute malware.

To read this article in full or to leave a comment, please click here