Ransom32 is being traded on an underground TOR site, with the authors offering customized versions of the malware in return for a 25 percent cut of whatever money is generated. The Ransom32 RaaS is a simple, but efficient, service where anyone can download and distribute their very own copy of the ransomware executable as long as they have a Bitcoin address.
Also Read : Now Nintendo 3DS XL can Run Windows 95
Security expert Fabian Wosar from Emsisoft first reported about the new ransomware family, which embedded in a self-extracting WinRAR archive, is using the NW.js platform for infiltrating the victims’ computers, and then holding their files by encrypting them with 128-bit AES encryption.
Why Ransom32 Uses NW.js Framework?
Because of this reason Ransom32 could easily be packaged for both Linux and Mac OS X. But the report says that at this point there is no such packages, which at least for the moment makes Ransom32 most likely Windows-only.
How to Protect Myself from Ransom32?
According to EMSISOFT, the best protection remains a solid and proven backup strategy. Using any top anti-malware or anti-virus program proved to be the second best defense.
Read more about Ransom32, check out the descriptive blog post from EMSISOFT.