Security Alerts & News
by Tymoteusz A. Góral

History
#1847 Koolova ransomware decrypts for free if you read two articles about ransomware
There have been a lot of strange twists and turns when it comes to ransomware this month. First, we had Popcorn Time that gave you the option of screwing over people by infecting them to possibly get a free decryption key. Now, we have a new in-development variant of the Koolova Ransomware that will decrypt your files for free if you educate yourself about ransomware by reading two articles.

Discovered by security researcher Michael Gillespie, this in-development ransomware is not ready for prime time. In fact, I had to mess with it a bit and setup a local http server to even get it to display the ransom screen.

In its functional state, Koolova will encrypt a victim's files and then display a screen similar to the Jigsaw Ransomware where the text is slowly shown on the screen. This text will tell the victim that they must read two articles before they can get a decryption key, It then tells you that if you are too lazy to read two articles before the countdown gets to zero, like Jigsaw, it will delete the encrypted files. This is not an idle threat as actually does delete the files.
Read more
#1853 Android was 2016's most vulnerable product and Oracle with the most security bugs
#1852 California law makes ransomware use illegal
#1851 Google patches 29 critical Android vulnerabilities including holes in Mediaserver, Qualcomm
#1850 This ransomware targets HR departments with fake job applications
#1849 Exposed MongoDB installs being erased, held for ransom
#1848 State of the web 2016 (PDF)
#1847 Koolova ransomware decrypts for free if you read two articles about ransomware
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12