1 min read

Popular Torrents Uploader Caught Sharing "GandCrab" Ransomware [Updated with GandCrab v.5.1 decryptor]

Filip TRUȚĂ

February 18, 2019

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Popular Torrents Uploader Caught Sharing "GandCrab" Ransomware [Updated with GandCrab v.5.1 decryptor]

Torrent sites are banning CracksNow, a popular source of torrent uploads, after discovering that the uploader of cracks and keygens was distributing ransomware.

CracksNow was labeled as “trusted” before a number of users started noticing bad things happening to their computers. Torrentfreak shows one of the more recent examples in a screenshot depicting comments to a now-removed torrent. According to the thread, the resulted download contained GandCrab version 5.1, the latest version of a nasty ransomware family. As any ransomware, GandCrab encrypts users” files and demands a crypto-ransom in exchange for the keys.

An administrator at torrent site 1337x.to told the publication, “He was banned by myself because I found ransomware in his uploads.”

“I also checked the same uploads from him on a couple other torrent sites and got the same results. I immediately alerted their staff about it so they could investigate and take appropriate action, which they did,” he said.

Several torrent sites banned the uploader upon hearing the news. 1337x reportedly still has some CracksNow uploads on file but assures Torrentfreak that the uploads have been checked for malware and are clean.

“I must admit that it is rare for a trusted uploader of this caliber to go rogue. It”s normally new guys that have the infected files,” the 1337x admin added.

As a rule of thumb, torrents are a risky affair, especially those that ask you to disable your AV. Always download software from trusted sources, and avoid pirated (cracked) executables at all times. Downloading pirated software increases your risk of malware infection.

Update: the latest version of our GandCrab decryption tool is available for download here. The new tool addresses infections with versions 5.0.4 through 5.1 – the latest used by cyber-criminals in recent attacks.

tags


Author



Right now

Top posts

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read
Cyber Tips for a Spook-Free Halloween

Cyber Tips for a Spook-Free Halloween

October 26, 2022

3 min read
August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Hacking cars remotely with just their VIN Hacking cars remotely with just their VIN
Graham CLULEY

December 05, 2022

2 min read
Russian courts attacked by CryWiper malware that poses as ransomware Russian courts attacked by CryWiper malware that poses as ransomware
Graham CLULEY

December 05, 2022

2 min read
Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts
Silviu STAHIE

December 02, 2022

1 min read