Brian Krebs has reported on the latest cyber criminal innovation in ransomware, named “Linux.Encoder.1; which targets sites powered by the Linux operating system.
Typically, the malware is injected into Web sites via known vulnerabilities in site plugins or third-party software — such as shopping cart programs. Once on a host machine, the malware will encrypt all of the files in the “home” directories on the system.
The file currently has almost zero detection when scrutinized by antivirus products at Google’s Virustotal.com, a free tool for scanning suspicious files against dozens of popular antivirus products. IT Security Experts from Tripwire give insight into this type of ransomware and provide advice for companies.