How Does RYUK Ransomware Encrypt Files?

RYUK ransomware, notoriously known for attacking corporations and large businesses, uses military grade encryption standards of AES 256 bit and RAS 1024 bit. Without the decryption key, it is impossible to decrypt large amounts of data. To get back up online in the shortest amount of time, the only resort left with victims is to…

How Do I Remove The GandCrab Ransomware Virus?

GandCrab ransomware creates multiple Windows registry entries, creates hidden executable files and sometimes opens a backdoor in firewalls for further access. There are multiple steps necessary, including the cleaning up of the Windows registry, scanning for malware and the manual cleanup of the GandCrab ransomware. Depending on the system environment, it is sometimes safer and…

How is GandCrab Ransomware Distributed?

The most common attack vector for GandCrab ransomware is an unsecure RDP-Connection (Remote Desktop Protocol). It is followed up by phishing emails and security vulnerabilities. In many ways, it isn’t different from other strains of ransomware and viruses, but it’s the Ransomware-as-a-Service business model that made GandCrab adopt a faster rate of distribution. Many amateur…