Popcorn Time malware offers users free removal if they get two other people to install link and pay
Ransomware gets craftier every single time. A new ransomware variant has been discovered using an innovative system to increase infections: the software turns victims into attackers by offering a pyramid scheme-style discount.
If you get yourself infected with the Popcorn Time malware, a ransom of 1 Bitcoin is required to unlock the files which is roughly $770.
However, there is a second option. The nasty way to refer a friend or foe. It is being done by passing on a link to the malware. If two or more people install this file and pay, they will decrypt your files for free. What a way to market their malware.
The affiliate marketing scheme was discovered by security researchers MalwareHunterTeam. For now, it’s only in development, but if the software gets a full release, its innovative distribution method could lead to it rapidly becoming one of the more widespread variants of this type of malware.
This is no different with other ransomware which encrypts the files. There is a minor twist wherein which it promises to decrypt the files once the victim pays up or infect others to pay up for them. There is a curveball code which may delete the encryption key entirely if the wrong code is entered four times.
Advice varies as to what users who are infected with ransomware should do. Most law enforcement organisations recommend against paying the ransoms, noting that it funds further criminal activities, and that there is no guarantee the files will be recovered anyway (some malware attempts to look like ransomware, but simply deletes the files outright).
Many security researchers recommend similarly, but some argue that it should not be on the individual victim to sacrifice their own files for the sake of fighting crime at large.
Eventually ransomware would be “cracked”, thanks to the coders making a variety of mistakes in how they encrypt the hard drive. Petya and Telecrypt are two types of malware that have been so defeated. Let us not rejoice yet since some malware just pretend to encrypt it but just plainly delete them. Waiting for the malware to be deciphered would we an option for people who can wait for the cure and that might be a smart choice unless there is no cure for it.