There is a new type of ransomware on the block, which goes by the name of CryPy. As we have seen with other malware types in the past, criminals tend to set variable prices to restore file access. This type of ransomware takes things to a new level, even though it is no immediate threat just yet. But security researchers have found out some interesting things about what the future of malware may hold. CryPy Does Things A Bit Differently First of all, CryPy is one of the very few types of ransomware that has been written entirely in Python. Most criminals seem to prefer C+ or C# to code their malware in, as they mainly target Windows systems. Python, however, is operating system-agnostic and can impact much more computers than ‘just” the Windows slice of the pie charts. That being said, CryPy will not be an immediate threat, according to Sophos . This malware sample only seems to be a proof of concept, and the communication servers for this malware are offline. In fact, simulating the ransomware environment does not appear to help either, as researchers can’t get the code to work to gauge its impact. But that doesn’t mean there is no reason for concern at all. This particular type of ransomware sends a notification to a remote control server every time a new file is encrypted. Once the information is received by the central server, a return command is sent, including a replacement filename and a one-time random encryption key. That means every single file on a computer would have its own decryption key. Rather than using one master key to restore full computer access, CryPy is taking things to a whole new level. From a monetization point of view, ransomware developers and affiliates can charge […]
