Thursday 23 November 2017, Poradnik bezpieczeństwa

A new cyber criminals campaign was launched – fake emails impersonating DotPay company

Lost24

The Nebezpiecznik portal warns of fake e-mail messages sent by the cyber criminals, in which they impersonate DotPay company.

The messages contain an attachment file. Opening it carries large consequences – infection of the device and loss of the 350 PLN.
You can read the e-mail content here.

Opening the attachment will initialize the download of the malicious file, denoted as binstxt.exe. The file  acts as a classical ransomwere and is capable of encrypting all the data stored on the disk. Once the encryption process is over, the victims receive a message informing them that the recovery of their data will only be possible by using a dedicated decrypting program activated with a one-time key. In order to obtain the key the users are given a one-time offer to pay a ransom fee of 100 USD. If they refuse the “generous” proposal, the price goes up to 200 USD.

If you have received such a message and opened the attached file, the Niebezpiecznik portal can provide you with the information on how to effectively block the cyber attack.