Locky ransomware is back with a spam campaign

Even before WannaCry existed, there was another ransomware that affected many users. It's about Locky. A ransomware that seems to be making its return now with a new worldwide spam attack. And it is a pretty strong campaign.

Locky ransomware is back with a spam campaign

The new variant has been named Locky Diablo6 and is being distributed through an aggressive email spam campaign. The method of infecting computers is the traditional one. Attachment in the email in question and wait for the least cautious user to open it.

Locky is back

The messages they send seem to be relatively easy to identify. Since most contain similar lines. For example: E (a date) (random number).docx. And in the body of the message it is often said simply that there are attachments and it closes with a thank you (education above all). As for finding a message with these characteristics, the recommended and wiser thing is not to open it.

Generally the attached attachment is a ZIP file. And it usually has the same name as the subject of the email they sent you. Once opened, Locky will take charge of encrypting our files. When it's done, it will show you on the screen the message that your files have been hijacked, the amount and the way to pay your reward.

It seems that the ransoms they are asking for so far are about $ 1, 600. Again, as always in these attacks. Have all the security patches that have been released in Windows. And also, don't open any strange or unknown email with attachments. Don't open the file in question either.