Nesa ransomware – the 166th version of Djvu that employs the SHA-1 encryption algorithm for blocking access to the victims’ files


Nesa malware

Nesa ransomware is a ransom-demanding virus that appears to be one of the latest Djvu/STOP family variants (v0166). A couple of days ago a well-known cybersecurity researcher named Michael Gillespie announced that the new Nesa virus has reached the spotlight.[1] Since then, a lot of users have been flooding the Internet sphere with questions about how to fix all the problems that are caused by this dangerous infection. According to reports, this ransomware uses the SHA-1 encryption algorithm[2] to lock up all data found and places the _readme.txt note in every folder that includes encrypted data.

Read more…