A new version of the widespread Reveton ransomware, first spotted by abuse.ch, claims to come from the hacker group Anonymous, and threatens to delete all files on the infected computer unless a payment of £100 is made via Ukash.
"The message also says users' personal information, like their name, address and date of birth, will be posted online," writes SC Magazine's Danielle Walker. "Mikko Hypponen, chief research officer at security firm F-Secure, tweeted about the ransomware Thursday, saying that the group behind it wasn't Anonymous."
"The use of British pounds suggests the creator of this malware is from the UK, although it’s possible this malware adjusts its message based on the operating system’s language settings," writes The Next Web's Emil Protalinski. "The rest of the message is your typical ransomware scam: pay up, or else. Users are told to send the money via Ukash to unlock their computers in '1 to 3 hours.'"
"Of course, just as when ransomware victims see demands from cash on their computer seemingly coming from the police, they should be equally dubious about whether this particular attack originated from someone affiliated with Anonymous hacktivists," writes Sophos' Graham Cluley.
"Anonymous is a hacktivist movement that militates for freedom of speech, freedom of information and other noble causes," writes Softpedia's Eduard Kovacs. "However, cybercriminals are most likely relying on the fact that many users might not know exactly what Anonymous is about and confuse it with a criminal collective. This may be especially true since popular culture has often associated hackers with criminals, regardless of the 'color of their hat' or their objectives."