The Week in Ransomware – November 2nd 2018 – RaaS, DiskCryptor, & More


October 28th 2018

Two New Dharma Variants

Jakub Kroustek found two new Dharma variants that append the .like or .gdb extension.

October 30th 2018

CommonRansom Ransomware Demands RDP Access to Decrypt Files

A new ransomware called CommonRansom was discovered that has a very bizarre request. In order to decrypt a computer after a payment is made, they require the victim to open up Remote Desktop Services on the affected computer and send them admin credentials in order to decrypt the victim’s files. The ransomware appends the [].CommonRansom extension and drops a ransom note named DECRYPTING.txt.

Read more…