Locky, a once major ransomware variant that has waned in prevalence in recent months, has returned and is reportedly being distributed worldwide, reports Bleeping Computer.
Security researcher Racco42 discovered a new variant of Locky Aug. 9, which appends the .diablo6 extension, according to Bleeping Computer. The ransomware variant is delivered via email phishing attacks, luring victims in with subject lines similar to "E (date) (random number).docx." The email message simply states "Files attached. Thanks."
The malicious code is stored on a zip file within the email message, which scans the computer for files and encrypts them upon being downloaded.
After the files have been encrypted, a ransom note is displayed, which provides information on how to pay. When Bleeping Computer published their report Aug. 9, the payment site was requesting 0.49 bitcoin, or $1,600.
More articles on cybersecurity:
WannaCry ransomware returns, hits LG in South Korea
Report: Top 10 malware families in July
OIG: IT weaknesses found in New Mexico Medicaid eligibility systems