Any active viewer would have noted the play of ransomware during the past few days. Including the one ransomware which caused the Global cyber attack using the US hacking tools and Blackmail Bitcoin Ransomware which is sold in the dark web marketplace. I could go on with the list of cyber attacks using ransomware. When the whole world is busy talking about these a new one called as Jaff ransomware that had been silently sweeping the world with more than just malicious data encryption.
How does Jaff Ransomware Infect? – It starts with the help of malicious PDF, when opened displays a prompt to the user and lures them to click on the extra file in it making them trigger the infection in the background.
By digging deeper the cybercrime marketplace infrastructure has a shop which provides thousands of compromised bank accounts, PayPal, Amazon, eBay, stolen credit cards which can be bought from few dollars to several bitcoins by any malicious hacker.
The highest volume of compromised records appears to originate from these countries: USA, Germany, France, Spain, Canada, Australia, Italy and New Zealand.
Focusing on Banks, like the one below which compromised accounts of New Zeland Bank ASB the total is sold at $275,241.
The Financial data is not only used for hacking accounts but also to make purchases using these accounts like breaking weak or reused passwords and credit cards are so much valuable in the malware economy since it can be changed into untraceable bitcoins.
Some of the links to cybercrime marketplace,
and the Tor Address – paysellzh4l5lso7[.]onion. All these sites link to a server in Saint Petersberg including to the Jaff Ransomware.
The harvested information from Jaff ransomware is directly being sold on the redefined cybercrime marketplace. so credit cards are targeted and stolen and sold. Protect yourself from just hack by improving your security