WeChat traped? QR code payment “ransom” virus appears in China for the first time

Recently, a new type of"blackmail virus"emerged in China.Through encrypting the common files on the users’computer,this virus will use WeChat QR code to extort ransom payment,and it can also steal all kinds of user accounts and passwords.


The interviewed network security experts said that it’s unnecessary to feel panic for ordinary user,because the virus encryption technology is easy to break,just upgrade your anti-virus software,then the blackmail can be intercepted.

9.jpg

On December 1,a terminal security technology company called“Tinder Safety”said that,its analysis team confirmed the virus(Ransom/Bcrypt)as the new"extortion"virus.After the invasion of computer operation,it can encrypt user files,but not to collect bitcoins,but require victims scanning the pop-up QR code to pay 110 yuan for ransom,this is also the first emergence of“extortion virus”asking for ransom via WeChat QR code in China.


According to Tinder Safety statistics,by December 3,more than 20,000 users have been infected with the virus,and the number of infected computers is still growing.

10.jpg

On December 4,WeChat and Alipay responded.


WeChat responded that it had immediately banned the account of the author related to the extortion virus in question and frozen the QR code for ransom.


Alipay security center also said that the follow up has been implemented immediately.There is no case of Alipay account affected,even if the password leaked,they can also ensure account security at the maximum extent.

11.jpg

How severe of the harm from the ransom this time and what’s the possibility being infected?


Li tiejuan,one network security expert,told that the encryption technology for the"extortion virus"this time was easy to crack down and had been discovered on last Saturday night,with security companies all cleaning it up immediately.


Li Tiejun said that this ransom virus only affects PC terminals and does not involve mobile payment.Even if the files are encrypted,they can be recovered by using security software.So,average users don’t need to worry too much,the antivirus software on the computer upgrading can interception the ransom virus.


Compiled by China IDCNOVA, retransmission prohibited without authorization. 

For more information, please contact justin@idcnova.com


Read Also
Post – Pandemic Era: How do International Companies Turn Crisis into Opportunities
Hechuan District (Chongqing City) Energy Big Data Center was established
IDCC2020 Review: Data Center International Cooperation Summit Forum

Research