Sunday 18 February 2018, Safety Guide
Dangerous Trojan Nymaim
Lost24
A new cybercriminals’ campaign has been launched. So far, many Internet users have received fake e-mails from a "courier company" with information about receiving a package, documents or invoice.
The fake e-mail's content a dangerous link, which does not lead to the courier company’s website, but to a malicious application containing a Trojan, known as Nymaim.
If Nymaim is launched on a device, it will attempt to either lock the screen or download additional malware. If the user is located in a country in Europe or North America, the malware will download a customized lockscreen for that particular country. The lockscreen will display the ransom demand. If the user is in a country for which no customized lockscreen is available,