no-image

Ransomware: GPCode strikes back

Kaspersky lab discovered a new variant today, in the form of an obfuscated executable. Please review the technical details for further information. The threat was detected automatically thanks to the Kaspersky Security Network as UDS:DangerousObject.Multi.Generic. Read Full Article

no-image

New Gpcode – mostly hot air

The latest Gpcode variant, which we wrote about here, is much less of a threat than its predecessors. The claims made by the author about the use of AES-256 and the enormous number of unique keys were a bluff. The author even didn’t use a public key in encryption, so all the information needed… Read Full Article

no-image

Gpcode – here we go again

Today we have made a disquieting discovery – a new Gpcode has appeared. We immediately began searching for samples on the Internet and talking to victims. We have received some information from victims already. After some digging, we did manage to find a sample that answers the descriptions… Read Full Article

no-image

Gpcode update

Our StopGpcode project has attracted a lot of attention from individual researchers and organizations who are interested in solving the puzzle of the blackmailing virus. Thanks for all of the feedback. Read Full Article

no-image

Don’t be a victim

The whole new Gpcode outbreak has set me thinking about attackers and victims in general. Yes, decrypting the key used by the new Gpcode is a thorny problem and there’s no guarantee of success. So I’d like to remind everyone that common sense is as improtant as good technology. Passivity on the… Read Full Article