Fortnite players have begun to fall victim to new types of ransomware attacks, based on the open-source program Hidden-Cry. Malware called Syrk will encrypt files on your hard drive while deleting entire folders if the ransom is not paid.
Syrk targets Fortnite users through an app called “SydneyFortniteHacks.exe”, which seems to help them cheat. When it is running, the application starts to encrypt the files on the user’s hard disk and USB drives. If the repayment in cryptocurrencies is not paid, the application starts deleting the files on the computer.
Since there are approximately 250 million players, they are an easy target for this type of malware.
“Combining gaming malware with ransomware was inevitable,”
said Chris Morales, head of security analysis at Vectra.
“Social engineering through online video games has been happening for some time. It is a large audience that targets and an industry that is known to try to cheat. Malware presented as a hack tool is unique because it will not be validated by any application store and bypasses normal security controls. This makes file encryption easy to execute. “
Easy-to-control ransomware attacks
Fortunately, Syrk is easy to control. The malware is based on a known attack vector, and the software is not complicated. Victims can easily unlock their computers by searching for some text files on their own computers. These files contain the passwords used to stop ransomware before deleting the files.
password for decryption is located at:
C: Users Default AppData Local Microsoft -pw + .txt
C: Users Default AppData Local Microsoft + dp-.txt
– Fafner [_KeyZee_] (@F_kZ_) August 1, 2019